Collaborate Disseminate
I would like to use a dedicated machine to perform administrative tasks in my company network, which are:
Using RSAT to administer the Active Directory domain
Using SSH to connect some Linux servers
Using Winbox to configure the Mikrotik … Continue reading Virtual machine as Secure Admin Workstation?
Many large companies have IT policies where even low-level IT employees have privileges such as remote access to any company computer (often automatic, able to override user denial, or even silent), or administrative access to any company … Continue reading Do common centralized IT access policies create any security risks, and are there alternatives?
I am learning about interacting with Kerberos from a programming standpoint and have been recreating some of Rubeus’s functions as a way of learning (because what better open source program is there that deals with Kerberos and tickets). O… Continue reading Administrator escalating to SYSTEM in the normal course of things
I, as Administrator, tried to assign Backup privileges to a sample user via secedit command…
cmd> secedit /export /cfg config.inf
It exported the contents of Local Security Policy (LSP) database to the newly created "config.inf&q… Continue reading Low level privilege assignment using Secedit failed
To help improve the user experience on admin workstations, would it be ok to disable the UAC or maybe set it with a more permissive mode?
Continue reading Disabling UAC (Windows 10) for Administrator accounts
My question was about Bitlocker and therefore ultimately was about disk encryption. But my question was moved to superuser.com for reason of "Not suitable for this site".
Isn’t disk encryption part of infosec?
Now, I am not sayin… Continue reading Why my question was moved to another stackexchange site? [migrated]
I have Linux servers which are members of AD domain, running SSSD demon.
SSSD is "Kerberized" and I also do want use Kerberos for Oracle db authentication.
NOTE: this is not purely about Oracle database. This can be applied to an… Continue reading Oracle Kerberos authentication on Linux host with SSSD
In this sense, I understand the encryption needed between say client and server and all communications that are external.
But for a scenario where for all VMs are in the same VPC and not exposed to the external world… Is VM-to-VM communi… Continue reading Why is TLS communication within a VPC important? [duplicate]
Whenever I create a scheduled task with administrator privs, it executes normally without any problem like:- schtasks /create /tn sample /tr C:\Windows\System32\cmd.exe /sd 08/10/2023 /st 10:23 /sc once
But whenever I tried to create a tas… Continue reading Unable to create scheduled task which executes as System
I look forward to your suggestions. We are concerned with the question of how to best and most easily implement a secure admin network for our IT administrators.
Our team consists of three groups – Network, Server, and Support – and each t… Continue reading Securing an Admin Network for IT Administrators