X
X
Back to the top
X

Rodolphe Herpeux

Hyper-V 2016 – Add-VMTPM issue

Hello folks, This week I worked with a client to implement BitLocker on guest machines from a Hyper-V host Server 2016. As you certainly know, Microsoft has added a great feature that allows you to add a TPM virtual chip to the guest machines without the host server having a physical TPM installed. Microsoft has...

continue reading

Active Directory Certificate Services [Part2]

In my post Active Directory Certificate Services [Part1], i explain to you the différents informations you need before you run an installation of PKI. Today in this new post, i show you how to install and settings a Microsoft PKI two layers. In my lab, i prepare three servers with these features : CAROOT 1 CPU...

continue reading

Microsoft Honolulu project

Hello folks, This week i have decided to test the new Microsoft Tools in preview “Honolulu”. Before, what is it Honolulu ? Honolulu project is a web management tool for Microsoft servers on premise. Install the gateway in your Datacenter and publish on public DNS and setting up firewall to manage your servers  on premise, from...

continue reading

DHCP – Activate Filter “Allow” & import MAC address from SCCM by WMI request

Hello folks, Recently, i have post a script to interroge SCCM and find the MAC address informations. In this post, i show you how activate DHCP Filter “Allow” to protect your DHCP delivery lease to deny access to your network (i know, there is NAP or NAC but, it is a simple way to block...

continue reading

Active Directory Certificate Services [Part1]

In this post, I will tell you the information to prepare for the installation of a future two-tier PKI infrastructure. What is it AD CS Services Active Directory Certificate Services (AD CS) provide customizable services for issuing and managing certificates that are used in software security systems that use public key technologies. Features of AD...

continue reading

Script to promote DC with constraints

Hello folks, Recently i have defined with colleagues a specifications document for deploy new domain controllers in existing forest. For this deploy, first constraint is fixed replication ports between domain controllers, please see KB Microsoft https://support.microsoft.com/en-us/help/224196/restricting-active-directory-rpc-traffic-to-a-specific-port. Second constraint is to check the minimal hardware system configuration. Third constraint is verify if flux networks are open...

continue reading