Federation with ADFS 3.0 and SNI Support

Hello!!

Some times I found problems with mobile devices trying to authenticate to ADFS when these are managed by Intune+ConfigMgr.

The problem is that exists a problem with the SNI.

Below I put a link where is well explained.

https://newsignature.com/articles/federation-adfs-3-0-sni-support

https://blogs.technet.microsoft.com/applicationproxyblog/2014/06/19/how-to-support-non-sni-capable-clients-with-web-application-proxy-and-ad-fs-2012-r2/

Regards

Anuncios

Page File – The definitive guide

Hi folks,

Today I found a very interesting blog post talking about page file. This days I’m doing architectural  design for differents sharepoint 2013 environments and SQL backends are physical machines with 144 Gb of RAM.

Not only are interesting the posted info, read also the comments.

http://blogs.technet.com/b/motiba/archive/2015/10/16/page-file-the-definitive-guide.aspx

Regards!

Backup AD CS

Hi guys,

With the following steps you can backup a CA.

  • Export registry with the following line from command line:

reg export “HKLM\System\CurrentControlSet\Services\CertSvc\Configuration”  c:\CaConfig\backup\configuration.reg /y

  • Open AD CS mmc and make a backup pushing Backup CA, these are the steps:

BackupCA01

When wizard appears push Next.

BackupCA02

Select all check boxes and insert a specified path.

BackupCA03

Insert a passphrase and push Next.

BackupCA04

Push Finish.

BackupCA05

In the folder where you have saved the backup you will find the CA Certificate and the database files.

BackupCA06

Regards!

How to create a security template for hardening

Hi!

To create and apply a customized security template I did the following:

Use a template based in Security Compliance Manager

http://technet.microsoft.com/en-us/library/cc677002.aspx

Deploy a temporal standalone WS 2012 R2 to do tests

Import the .inf file exported from GPO Backup (folder) option in SCM to a Security Template mmc and then modify all options you want.

Add Security Configuration and Analysis snapin, import your template .inf and then execute the analyze option, remember to use a new database.

http://technet.microsoft.com/en-us/library/bb742512.aspx#EFAA

Save configurations as inf file and it will be your security template for hardening.

Regards

Syspreping a WS 2012 R2 virtual machine template

Hi there!

To sysprep a WS 2012 R2 for deploy virtual machines I do the following things:

Before to sysprep configure regional settings for all users and download/install windows updates

  • In device manager from View pane enable show hidden devices and then in Network Adapters delete Micosoft Hyper-V Network Adapter
  •  Delete in %WINDIR%\Panther the Unattend folder
  • Execute %WINDIR%\system32\sysprep\sysprep.exe /generalize /oobe /mode:vm /shutdown

Regards!