Forum Discussion
A sample deployment of Authentication Policies and Authentication Policy Silos in Active Directory!
Dear Microsoft and Active Directory Friends,
The Active Directory is an important element in an IT infrastructure. With the intensive use, constant expansion, it can happen with time that t...
Hello,
Thank you for this awesome post. For those who do not know this feature, managing Active Directory/Filer delegations through Authentication Policies/Authentication Policies Silos/Claims aimed to replace the good old AGDLP/GPO delegation model (which suffered from token bloat issues amongst other things).
This was back in 2013.
Sadly, I never saw it in production since - even Microsoft PFE still rely on AGDLP/GPO model for Active Directory delegation last time I checked.
Thank you for this awesome post. For those who do not know this feature, managing Active Directory/Filer delegations through Authentication Policies/Authentication Policies Silos/Claims aimed to replace the good old AGDLP/GPO delegation model (which suffered from token bloat issues amongst other things).
This was back in 2013.
Sadly, I never saw it in production since - even Microsoft PFE still rely on AGDLP/GPO model for Active Directory delegation last time I checked.
It's a pleasure!
- You're welcome Tom ! Any feedback about putting this into production ? Did it really improve security/quality of life for customers IT Teams ?