Browse by Tags

Tagged Content List
  • Blog Post: The Security Log Haystack – Event Forwarding and You

    Hi. This is your guest writer Mark Renoden . I’m a Senior Premier Field Engineer based in Sydney, Australia and I’m going to talk to you about the use of Event Forwarding to collect security events. This is particularly useful when: You have specific events you’re looking for...
  • Blog Post: I moved my PDCE role and accounts started locking out!

    Hi, David here. We’ve seen a few cases on this now, so I wanted to put the word out and explain why it happens and how you can (very easily) prevent it from happening to you. The scenario: Imagine an ordinary domain admin. Let’s call him Fred. Fred has finally gotten the ok from his...
  • Blog Post: Locked or not? Demystifying the UI behavior for account lockouts

    Hello Everyone, This is Shijo from our team in Bangalore once again. Today I’d like to briefly discuss account lockouts, and some UI behaviors that can trip admins up when dealing with account lockouts. If you’ve ever had to troubleshoot an account lockout issue, you might have noticed...
  • Blog Post: You probably don't need ACCTINFO2.DLL

    Hi folks, Ned here again. Customers periodically ask us for a rumored replacement for the Windows 2000 acctinfo.dll that works on 64-bit Windows 7 and Windows Server 2008 R2 . That old DLL added an extra tab to the Active Directory Users and Computers snap-in to centralize some user account info: ...
  • Blog Post: Friday Mail Sack: Super Slo-Mo Edition

    Hello folks, Ned here again with another Mail Sack. Before I get rolling though, a quick public service announcement: Plenty of you have downloaded the Windows 8 Developer Preview and are knee-deep in the new goo . We really want your feedback, so if you have comments, please use one of the following...
  • Blog Post: Read-Only Domain Controllers and Account Lockouts

    Hello again - Bob Drake here. Today I will be talking about a particular behavior with account lockouts that might be seen with the introduction of “ Read-Only Domain Controllers ” (RODC's) in Windows Server 2008. Windows 2008 RODC’s are domain controllers that can authenticate users...
  • Blog Post: Friday Mail Sack: Robert Wagner Edition

    Hello folks, Ned here again. This week, we discuss: Computer and user name uniqueness DFSR file size matters The weird user unlock in ADUC RDC extras USMT versus full disk encryption DFSN and standalone interlink timing DFSR conflict folder growth Other stuff Things have...
  • Blog Post: Fail to log Security Settings from Default Domain Policy

    Hello everyone, Scott Goad here, and today I want to take a few minutes and talk about a recent case where we fail to log security settings from the Default Domain Policy. In this case, we had a small environment with 2 domain controllers, one holding all of the FSMO roles, the other a replica domain...