Premier Field Engineering
Copied!
Home
Options
45
Christopher Weaver on 05-15-2019 03:29 PM
43
Christopher Weaver on 05-15-2019 03:28 PM
15
Christopher Weaver on 05-15-2019 03:28 PM
20
Christopher Weaver on 05-15-2019 03:28 PM
16
Christopher Weaver on 05-15-2019 03:28 PM
15
Christopher Weaver on 05-15-2019 03:28 PM
22
Christopher Weaver on 05-15-2019 03:28 PM
23
Christopher Weaver on 05-15-2019 03:27 PM
12
Christopher Weaver on 05-15-2019 03:27 PM
12
Christopher Weaver on 05-15-2019 03:27 PM
15
Christopher Weaver on 05-15-2019 03:27 PM
12
Christopher Weaver on 05-15-2019 03:27 PM
12
Christopher Weaver on 05-15-2019 03:27 PM
13
Christopher Weaver on 05-15-2019 03:26 PM
18
Christopher Weaver on 05-15-2019 03:26 PM
12
Christopher Weaver on 05-15-2019 03:26 PM
16
Christopher Weaver on 05-15-2019 03:26 PM
17
Christopher Weaver on 05-15-2019 03:26 PM
21
Christopher Weaver on 05-15-2019 03:26 PM
12
Christopher Weaver on 05-15-2019 03:26 PM
12
Christopher Weaver on 05-15-2019 03:26 PM
18
Christopher Weaver on 05-15-2019 03:26 PM
13
Christopher Weaver on 05-15-2019 03:26 PM
12
Christopher Weaver on 05-15-2019 03:25 PM
12
Christopher Weaver on 05-15-2019 03:25 PM
12
Christopher Weaver on 05-15-2019 03:25 PM
11
Christopher Weaver on 05-15-2019 03:25 PM
11
Christopher Weaver on 05-15-2019 03:24 PM
13
Christopher Weaver on 05-15-2019 03:24 PM
11
Christopher Weaver on 05-15-2019 03:24 PM
Latest Comments
Hi @Alan La Pietra, I'm not a noob regarding Active Directory security and especially about trusts & kerberos (search for my name) The post is very explicit regarding the manipulation that needs to be performed using netdom. The root cause of my question was to understand how did you enforce technic...
0 Likes
@vletoux Hi Sir, sorry for the late response I didn't quite understand you question. If you have installed July update you should have "TGTDelegation Disabled = safe" You can still change this value to Enabled in your org if required, but absolutely not recommended Alan @PFE
0 Likes
@RossUA sorry for the late response The bold text under the command states what you have confirmed. Flag should be set in Trusted forest for each Trusting forest TGT delegation across an incoming trust can be disabled by setting the EnableTGTDelegation flag to No on the trust using netdom. netdom.ex...
0 Likes
Can you explain in more details how third party applications can check the "trustattribute" attribute of the trust (https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-adts/e9a2d23c-c31e-4a6f-88a0-6646fdb51a3c) to know if the trust is safe or not ? (your powershell script relies on c# cl...
0 Likes
@TajMohammed Brilliant article. the final piece in the jigsaw.
2 Likes