CredSSP encryption oracle remediation

This article provides a solution to an issue in which you are not able to make a remote desktop (RDP) connection to server from the local client and got error: CredSSP encryption oracle remediation. Solution To solve this issue, you have to install the update on remote server. However, if you need to connect to a computer that hasn’t received the update, you can downgrade…

Read More

How to Create a Fine-Grained Password Policy in AD

Passwords were only managed via Default Domain Policy before server 2008, so ONLY ONE password policy was possible across the domain. In Server 2008 and onward Microsoft introduced Fine-Grained Password Policy and you can manage multiple passwords polices by PSO (Password Setting Objects)   Deploy Fine-Grained Password Policy Mock-up Presentation Here I have created 3 users in my AD Mohamad Shafiq that belongs to no…

Read More

How to deploy Remote Desktop Services (RDS) 2019

Installing Remote Desktop Services (RDS) on Windows Server 2019 looks like a lengthy task , but in reality is quite easy. In this article, I will walk you though install these services in a domain environment that requires two servers. Prerequisites Minimum 2 servers or VM (on same domain network) SQL Server installation Media (Express will also work) Certificate (optional) Software Required Server 2019 ISO…

Read More

Migrate SYSVOL replication from FRS to DFSR (Distributed File System Replication)

Windows Server 2003 and 2003 R2 uses File Replication Service (FRS) to replicate SYSVOL folder contents. Windows server 2008 and later uses Distributed File System (DFS) for the replication, but this step is missed most of the times and encounter issues when adding Server 2019 as Domain Controller which only supports DFS. Dfsrmig.exe, is installed with the DFS Replication Service. This tool migrates SYSVOL to…

Read More

Installing SFTP – Server 2020 & Server 2019

Description: This is step by step guide to install and configure a SFTP server on Windows Server 2019 to achieve greater security in the communication from remote clients to File Servers over the internet if you would like to check how to install File Server Role in Window Server 2019 then click here How to .. –https://www.youtube.com/channel/UCLop2-XaRme45Pg9X7UmfOQ?sub_confirmation=1 Prerequisite: better to assign a static IP address Allow…

Read More

Installing and Configuring SFTP on Server 2019

The following are the steps to enable SFTP on a Windows server 2019: Go to Windows Settings–>Apps. Click on “Manage optional features” Under apps and features menu. Look for OpenSSH Server, check if it’s already installed, if not click on “Add a feature” to install How to set up an SFTP server in Windows using OpenSSH Installing OpenSSH Download OpenSSH from GitHub. Extract the archive to the Program Files folder. Open PowerShell…

Read More

Block External E-mail communication for a user or group of users

Black Outbound There are situations when you have requirements to restrict a single user or multiple to internal communication only. You can use below methods to achieve the goal. This is applicable to Office365 solutions as well as OnPrem Exchange Solutions. Use transport rule to block outbound e-mail communication. In the Exchange Admin Center navigate to Mail Flow -> Rules and Create a new Rule Start a…

Read More

External NTP with Virtual Domain Controllers

Client Workstations and Member Servers are simonizing Time from domain controllers and it becomes very important to have at least one external System synchronizing with External NTP. By default, FSMO role owner sync with Hyper-V Host (When in Virtual), Physical hosts sync with local clock Additional domain controllers sync with FSMO role owner Client workstations and member Servers sync with any domain controller As a…

Read More