Tag Archive: Security

May 29 2013

Restrict users from login to Remote Desktop Web Access

If you are working with Remote Desktop Services, and especially with Remote Desktop Web Access, you might know by now that every domain user can log in to that interface, even if that user has no application published. Most of the administrators don’t even care about this, because if the user can’t see an application …

Continue reading »

Apr 14 2013

Deploying and Configuring an Read-Only Domain Controller (RODC)

I know most of you have to maintain branch offices, and they are not easy and especially not secure. Domain controllers in those locations can be easily stolen or compromise, leaving your users and your network vulnerable to attacks. Microsoft thought about this, and starting with Windows Server 2008 they implemented a feature in the …

Continue reading »

Mar 17 2013

Installing an Enterprise Certificate Authority in Windows Server 2012

A lot of things changed in server 2012 on the PKI model compared to his predecessors. We have version four certificates now, better security on the CA role service, you can install the AD CS role services on server core and many more features. The installation is straight-forward and you are guided by a wizard, and for those …

Continue reading »

Feb 09 2013

Configuring TMG 2010 with a single network adapter (Proxy mode)

OK, this is an easy one, and the configuration is more about on the client side than on the TMG server itself. You might wonder why do you need this kind of scenario. Well… maybe you already have a firewall in place and all you need is an extra protection for your internet traffic. How …

Continue reading »

Jan 17 2013

How to set up Exchange Send Connectors with a Smart Host

Sometimes you need to route all your outbound emails trough a SMTP smart host and not route them directly to the internet. There are multiple causes for this, like the cost for the company is too high buying antivirus and antispam software; not to mention hardware and OS licenses for those. The second one is …

Continue reading »

Jan 17 2013

Configuring Workgroup Computers with Internal EV Certificates

You know that starting with Windows Server 2008 R2 you can configure your Internal CA to issue Extended Validation (EV) certificates, right ? But what about workgroup computers ? Let’s say you have a few computers in your organization that are not joined to the domain and you want your users to have that green …

Continue reading »

Dec 23 2012

Publishing Multiple HTTP Web Sites with TMG 2010

It’s piece-of-cake to publish a single HTTP website with TMG 2010, but what do you do when you have multiple web sites in your organization and you want all of them to be visible to the world. Is not a difficult process, but there are a lot of steps involved. 

Continue reading »

Nov 30 2012

Configuring Exchange 2010 Edge Transport Server Role

If you want to keep the bad guys out of your Exchange infrastructure an Edge Transport server is needed. This will also filter emails and make rid of Spam and viruses, and with third-party software installed on the box it can do miracles. The installation is straight forward as you can see it here, so …

Continue reading »

Nov 10 2012

Publishing Exchange 2010 Outlook Anywhere with TMG 2010

OK, so you configured Outlook Anywhere, you installed a proper certificate, but now you need to allow the connection from the internet to your Exchange server so clients can use the service. I this guide I will show how to allow that connection using TMG 2010.

Continue reading »

Nov 04 2012

Configure TMG 2010 for certificate request from internal CA

There are times when you need to request a computer certificate directly from your TMG server, and the easiest way is to use the certificates store console, instead of the internal CA web page. You just click next a couple of times and the certificate is installed and ready to be used.

Continue reading »

Older posts «

» Newer posts

css.php