Anyone have any good links with tips on securing Active
Directory? Im going to have a couple of AD servers out on the Net, so I
want to do what I can to lock them down.
Brad Martin
Go Daddy Software
[EMAIL PROTECTED]
480.505.8800 ext. 250
Title: Message
There's some good tips here. Make sure the AD
servers on the NET are in a separate forest.
http://www.aelita.com/ADSecurity
-doug
-Original Message-From: Brad Martin
[mailto:[EMAIL PROTECTED]] Sent: Friday, December 27, 2002 11:11
AMTo: Active Directory
Title: Message
http://www.nsa.gov/snac/win2k/download.htm-- Guides for AD,
DNS, Group Polices, File System.
I use these guides religiously.
-Original Message-From: Hazelman, Doug
[mailto:[EMAIL PROTECTED]] Sent: Friday, December 27, 2002 11:19
AMTo: [EMAIL
Title: Message
Really? Dothey have a ritual for server cleansing and consecration?
Maybe a psalmto ward off PHB's? :^)
-Original Message-From: Leney, Justin
[mailto:[EMAIL PROTECTED]] Sent: Friday, December 27, 2002 9:25
AMTo: '[EMAIL PROTECTED]'Subject: RE:
[ActiveDir]
Best
Practices for Designing a Secure Active Directory
http://fetchportal.com/click_thru.asp?LinkId=131
Ops Guide
for Securing Active Directory
http://fetchportal.com/links.asp?CatId=21
Larry A. Duncan, MCSA/MCSE
Solutions Architect, CompTrends
Consulting
[EMAIL PROTECTED]
Make sure that you test any security
recommendations in a lab before deploying them on your network. I have
seen some of the templates from the NSA cause problems.
Tim Hines, MCSA, MCSE (2000 NT4)MVP - Active Directory
- Original Message -
From:
Larry A. Duncan
To:
Title: Message
Like
the infamous "all my DCs just start rebooting themselves every 15 minutes"
problem? ;-)
-gil
-Original Message-From: Tim Hines
[mailto:[EMAIL PROTECTED]] Sent: Friday, December 27, 2002
10:35 AMTo: [EMAIL PROTECTED]Subject: Re:
[ActiveDir] Hardening
I recall the ability to add a value to the NTDS\Diagnostics
registry key on a DC to be able to log information pertaining to management of
objects in AD. Of course after I told someone about this I cant seem to
find it anywhere. What I remember is it is a value that is not present by
Title: Message
Yeah, but they are pretty damn secure
then.
Brad Martin
Go Daddy Software
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Gil Kirkpatrick
Sent: Friday, December 27, 2002
10:43 AM
To: '[EMAIL PROTECTED]'
Subject: RE:
Title: Message
I think that Gil is referring to the setting that
sets "shut down the computer when the securityaudit log is full".
That caused servers to reboot over and over. I also recall thatone
of the templates set additional restrictions for anonymous connections to "no
access without
Title: Message
Thanks for clarifying, Gil. This is great information.
Larry A. Duncan, MCSA/MCSE
Solutions Architect, CompTrends
Consulting
[EMAIL PROTECTED]
http://www.comptrends.com/
ph. 615.598.0241
DMOZ: Systems_Management/Installers
LAUNCHCast Radio: 1237556939
Title: Message
As far as I can tell (Im new at the
company here, and I still haven't gotten a full run down of the environment)
there will be people actually authenticating with them.
Brad Martin
Go Daddy Software
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL
Title: Message
why
out on the Net?
-Original Message-From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
On Behalf Of Brad MartinSent: Friday, December 27, 2002
11:11To: Active Directory Mailing ListSubject:
[ActiveDir] Hardening Active Directory
Anyone have any
I am getting an event id 10010 which refers to DCOM. The message is
The server { number in her} did not register with DCOM within the required timeout. Any help would be much appreciated. thanks in advance
JohnDo you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now
Title: Message
http://www.eventid.net/display.asp?eventid=10010source=
-Original Message-From: John B
[mailto:[EMAIL PROTECTED]] Sent: Friday, December 27, 2002 5:40
PMTo: [EMAIL PROTECTED]Subject: [ActiveDir]
I am getting an event id 10010 which refers to DCOM. The
thanks weston. I checked out that link and was able to find something that I believe might be causing the problem. I believe it's related to terminal services and BITS. I made the change or fix, I'll have to review the event log to confirm that this has been fixed. I appreciate your help, hope you
Title: Message
Anytime :)
-Original Message-From: John B
[mailto:[EMAIL PROTECTED]] Sent: Friday, December 27, 2002 6:03
PMTo: [EMAIL PROTECTED]Subject: RE:
[ActiveDir]
thanks weston. I checked out that link and was able to find something that
I believe might be
Title: Message
http://www.eventid.net/display.asp?eventid=10010source=
-Original Message-From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
On Behalf Of John BSent: Friday, December 27, 2002
17:40To: [EMAIL PROTECTED]Subject:
[ActiveDir]
I am getting an event id
Resend - last was bounced. No idea why
Joe,
Check Local Policy on each of the DCs. If any of these was an upgrade
(and sometimes, not) of a member that was in a service position before
becoming a DC, there are times when a program or
19 matches
Mail list logo
