Skip to content

Category Archives: Active Directory

Kerberos Primer, Part I

Although it is a critical part of Windows Active Directory authentication, the Kerberos protocol is often misunderstood in how it functions.  Because of the critical nature of the protocol to AD, it is crucial that all system administrators know this protocol and the methods available for troubleshooting it.

Posted 13 November 2009 Jeff Huston § Comments (0) ° Tagged: , , ,

Using Subject Alternate Names in Active Directory Certificate Services

AD Certificate Services does support the generation of certificates that have subject alternate names (SAN) defined for them.  However, this feature is not enabled by default and must be explicitly enabled.

Posted 30 October 2009 Jeff Huston § Comments (0) ° Tagged: ,

Active Directory across a Firewall

To access Active Directory across a firewall, the following table lists the required ports that must be open from the client system to the domain controller.

Posted 30 October 2009 Jeff Huston § Comments (0) ° Tagged:

UserAccountControl Attribute in Active Directory

The UserAccountControl attribute on user and computer objects is a bitmask.  Here’s a quick summary of the flags and their meanings:

Posted 30 October 2009 Jeff Huston § Comments (0) ° Tagged:

DNS Zone IP Address Translation

There are times where two networks are joined together and address translation (NAT) is being used. In order for computers on one side to find the IP addresses to be used on the other side, some mechanism is required to translate the names into the translated IP addresses.

Typically, this problem is solved by using a HOSTS file. While convenient for quick translation, it is difficult to manage (since it is local to each computer) and only facilitates the equivalent of the DNS A and CNAME record types. Usually those records are sufficient, but the SRV record type is also important for applications (such as Microsoft Active Directory, Microsoft Office Communications Server, and others).

Posted 27 August 2009 Jeff Huston § How To's § White Papers § Windows Operating System Comments (0) ° Tagged: ,