Windows Tips

http://www.rebeladmin.com/2015/01/configuring-trusts-part-3/ This is the part 3 of the series which explain about “Trusts” between infrastructures. If you not checked the other 2 parts yet you can find them in here. Configuring Trusts – Part 1 Configuring Trusts – Part 2 In this article I will cover up the rest of the concepts, terms, involves with setting up a trust. Security Identifier (SID) filtering Microsoft Systems uses a structure known as SID to express its identities. Its act as a token. SID filtering is used to block users in trusted forest or domain being able to elevate their privileges in local forest or domain. This is important for external trusts as when you trusting you can control rights to provide credentials between domains. By default windows 2012, windows 2012 R2 have SID filtering enabled. If you wish to disable this, you can do it using following commands. ( https://technet.microsoft.com/en-us/library/cc794801(v=ws.10).aspx ) To disable SID filte...

http://www.rebeladmin.com/2015/01/configuring-trusts-part-2/ This is the part 2 of the series of articles which describes about trusts between infrastructures. If you still not read the part 1 of the series you can find it in  here . On previous article I explain what is a trust and common terms used in process. This article will be extend to it. External Trusts  – Let’s assume we have child domain called “ HQ.contoso.com ” under contoso.com forest. Company recently had business relationship with XYZ corp. They having child domain under the XYZ.com forest called “ Sales.xyz.com ”. As per business need management wants to allow users, resources in “Sales.xyz.com” to access data, resources in “HQ.contoso.com”. None of the other domains, child domains in both forest should allow in this operation. This is where we can use “External Trusts”. So it will only allow part of the forest to participate in unique operation. Realm Trust  – Also in real world Microsoft AD ser...

http://www.rebeladmin.com/2015/01/configuring-trusts-part-1/ Trusts, simply we can define as a bond between multiple domains, multiple forests. It controls how or what been allowed between domains and forests. Let’s assume we have a company called  Contoso Inc.  and its running with domain  contoso.com . Company recently merge with another company called  XYZ Inc.  and its running with domain xyz.com . Management wants to allow their resources to been used by both company users. For ex- A user in  contoso.com  will required to access a share in  xyz.com  file server. Company wants to do it with minimum impact or changes. This is where “trusts” comes in to the picture. Using trusts we can control who will be trusted, how it will be and what sort of access users have on resources. Before we move in to the configurations it is important to understand the concepts of trusts. Trusting Domain  – This will be the domain contains the re...