March 4, 2020 Hanson No comments exist

Microsoft will release security update in March 2020 for all supported Windows platforms that will enable LDAP channel binding and LDAP signing on Active Directory servers by default. The DC will reject Simple Authentication and Security Layer (SASL) LDAP binds that do not request signing (integrity verification) or to reject LDAP simple binds that are…

March 26, 2019 Hanson No comments exist

Since last week, I could not connect to 2 remote desktop servers which are in a different city. The error message was “Remote Desktop can’t connect to the remote computer for one of these reasons:” With many years experience, I could tell it’s network related issue. As the issue happening, the servers were still in…

March 15, 2019 Hanson No comments exist

Since last Monday the same admin account got locked every night. Windows Event Messages – — Event 1 of 1: Log Name: Security Source: Microsoft-Windows-Security-Auditing Logged: 03/09/2019 00:35:58 Event ID: 4740 Level: Audit Success User: Computer: ABCDC1.AD.ABC.COM A user account was locked out. Subject: Security ID: S-1-5-18 Account Name: DC201$ Account Domain: AD Logon ID:…

January 4, 2019 Hanson No comments exist

System Center Orchestrator runbook can run PowerShell Script and WMI query to manage remote computer. PowerShell Remoting depends on Windows Remote Management (WinRM), which is Microsoft’s implementation of the WS-Management (WS-Man) protocol. The protocol relies on HTTP or HTTPS and uses the TCP ports 5985 and 5986, respectively. WS-Management encrypts all PowerShell communication even if…