Core Infrastructure and Security Blog
Copied!
Home
Options
674
AMARSIGLIA on 11-01-2019 03:12 PM
698
ktackett on 11-01-2019 03:12 PM
630
AMARSIGLIA on 11-01-2019 03:09 PM
592
ktackett on 11-01-2019 03:08 PM
581
ktackett on 11-01-2019 03:08 PM
572
ktackett on 11-01-2019 03:07 PM
636
ktackett on 11-01-2019 03:05 PM
534
AMARSIGLIA on 11-01-2019 03:02 PM
493
AMARSIGLIA on 11-01-2019 03:02 PM
474
AMARSIGLIA on 11-01-2019 03:02 PM
381
AMARSIGLIA on 11-01-2019 03:01 PM
370
AMARSIGLIA on 11-01-2019 02:59 PM
404
AMARSIGLIA on 11-01-2019 02:57 PM
352
AMARSIGLIA on 11-01-2019 02:56 PM
381
AMARSIGLIA on 11-01-2019 02:54 PM
354
AMARSIGLIA on 11-01-2019 02:54 PM
349
ktackett on 11-01-2019 02:53 PM
356
ktackett on 11-01-2019 02:51 PM
356
ktackett on 11-01-2019 02:49 PM
353
ktackett on 11-01-2019 02:47 PM
350
ktackett on 11-01-2019 02:44 PM
344
AMARSIGLIA on 11-01-2019 02:41 PM
295
AMARSIGLIA on 11-01-2019 02:38 PM
278
AMARSIGLIA on 11-01-2019 02:38 PM
246
AMARSIGLIA on 11-01-2019 02:37 PM
231
AMARSIGLIA on 11-01-2019 02:36 PM
214
AMARSIGLIA on 11-01-2019 02:36 PM
191
AMARSIGLIA on 11-01-2019 02:35 PM
175
AMARSIGLIA on 11-01-2019 02:34 PM
167
AMARSIGLIA on 11-01-2019 02:32 PM
Latest Comments
@Alan La Pietra Can you please clarify what effect this update will have on Ldap CLIENT signing (LdapClientIntegrity), specifically if it's currently set to negotiate? We are successfully using the following settings without any problems:DCs = policy "Domain controller: LDAP server signing requireme...
0 Likes
Don't know why, but the post from 01-08-2020 is gone.My summary and suggestion for this issue (check it yourself !); I hope I have described everything correctly and others can use it as a template to deal with this topic. Good luck in march. Ignore LDAP channel binding token (LDAP CBT) stuff: The s...
0 Likes
@JMHahnWe have several hundreds of domains, with some customers having hundreds of third-party applications, many of which are using LDAP. I did monitoring for one of the customer and have got the following list of applications: AirwatchJiraWebproxyApp for 2-factor authenticationVPNIdentity synchron...
3 Likes
@JMHahnvery good words ! It is very confusing changing the interpretation of a registry key with an update, which will result in a wrong description in the Group Policy explanation.
0 Likes
@RossUA You would definitely want to know which DCs receive normal 389 LDAP authentication request from third-party applications before you decide which DC to include/exclude. This wouldn't be difficult via the event logs, but you would want to quadruple check everything. The benefit is that you'd h...
3 Likes