Archiv der Kategorie: Beitrag

Links for OpenLDAP as AD-Proxy, with Attribute hiding and allow only specific paths

https://doc.owncloud.org/server/10.0/admin_manual/configuration/ldap/ldap_proxy_cache_server_setup.html

http://www.drdobbs.com/the-openldap-proxy-server/199101839

http://www.openldap.org/doc/admin23/proxycache.html

https://www.openldap.org/lists/openldap-technical/201007/msg00074.html

https://www.openldap.org/doc/admin24/overlays.html

https://jpmens.net/pages/openldap-back-ldap-proxy-with-support-for-thunderbird-and-usercertificates/

https://uit.stanford.edu/service/directory/aclexamples

Windows Enterprise CA – Certificate Services

Auto-Renewal of Multidomain- / SAN-Certificates via GPO

How to Avoid Having Users Enroll for Multiple Certificates

Multiple CAs in AD-Domain

Discussion about how to issue certs with SAN – do not always use „EDITF_ATTRIBUTESUBJECTALTNAME2“

Why not use „EDITF_ATTRIBUTESUBJECTALTNAME2“

https://blogs.technet.microsoft.com/russellt/2016/04/29/get-crlfreshness/

Very usefull PowerShell Module for working with CAs

Certificate enrollment policy server URI format
LDAP URI for Certificate Enrollment Policy

Certificate Enrollment Web Services in Active Directory Certificate Services

Very useful information on having more than one issuing CA in specific AD

Write-Up and thoughts about CRLs and OCSP

CP & CPS

https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/cc780454(v=ws.10)

SCEP / NDES – getting Linux in the MS CA

https://blogs.technet.microsoft.com/jeffbutte/2016/12/16/236/

Windows Eventlog Forwarding

Bin grad über das Thema Windows Eventlog Forwarding gestolpert… Nix mehr mit Agenten verteilen, Updaten und Gedöns. Logserver definieren, GPO bauen, Einstellungen treffen und verlinken. Fertsch. Klingt gut – das wird demnächst ausprobiert.

Some hints from Microsoft, to help IDS with Windows Eventlog Forwarding:

https://docs.microsoft.com/de-de/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection

A Walk-through, to get 2 scenarios up and running:

http://www.vkernel.ro/blog/how-to-configure-windows-event-log-forwarding

Cut down the collected eventsources to under about 20:
https://social.technet.microsoft.com/Forums/en-US/1706b5bb-6415-47ba-af95-3c13f97a197d/windows-event-forwarding-winrm-issues?forum=winservergen

Write-up of some common problems:
http://zenshaze.com/wp/?p=57

The Windows Event Forwarding Survival Guide:
https://hackernoon.com/the-windows-event-forwarding-survival-guide-2010db7a68c4

Write your forwarded logs to a specified log file:

https://blogs.technet.microsoft.com/russellt/2016/05/18/creating-custom-windows-event-forwarding-logs/

 

ADFS

How To Install ADFS 2012 R2 For Office 365:

TechNet: ADFS 3.0

Creating a Claim-Aware enabled test-app: http://www.vankeyenberg.be/?p=1281

Setting up a ADFS 3.0 Test-Lab

https://technet.microsoft.com/en-us/library/dn280939.aspx#BKMK_13

https://technet.microsoft.com/en-us/library/dn280939.aspx#BKMK_5

Handy guide for OS- in this case Windows Server 2008 R2: http://nikpatel.net/2014/06/09/step-by-step-complete-guide-to-configure-adfs-2-0-integration-with-sharepoint-2013-on-windows-server-2008-r2/

Windows Identity Foundation Runtime fpr W2k8R2: http://www.microsoft.com/en-us/download/details.aspx?id=17331

Windows Identitiy Foundateion with Sample Apps and FedUtil.exe: Windows Identity Foundation

Microsoft PFE DeepDive:

https://blogs.technet.microsoft.com/askpfeplat/2015/03/01/adfs-deep-dive-onboarding-applications/

http://consulting.risualblogs.com/blog/2015/06/16/adfs-3-0-and-workday-single-sign-on/

ADFS 3.0 Debug Logging

SQL Server – Query to find a column in every table in all tables

Source: http://blog.sqlauthority.com/2008/08/06/sql-server-query-to-find-column-from-all-tables-of-database/

 

USE AdventureWorks
GO
SELECT t.name AS table_name,
SCHEMA_NAME(schema_id) AS schema_name,
c.name AS column_name
FROM sys.tables AS t
INNER JOIN sys.columns c ON t.OBJECT_ID = c.OBJECT_ID
WHERE c.name LIKE ‚%EmployeeID%‘
ORDER BY schema_name, table_name;

Dedup-Tool Cross-Platform

Just found a handy little tool finding duplicate files on your storage. Works like a charme on my Ubuntu box – even to a poorly connected NAS (PowerLAN to cellar). Till now it saved me 6 GB of space on my NAS. Hopefully more to come.

http://xmodulo.com/dupeguru-deduplicate-files-linux.html