Atbroker.exe – Application Error in Vista

  So I go to remote into my machine via RDP tonight and up comes a black screen and the popup error: Hrmm so I click OK and now all I have is a black screen. Gahhhh. I actually had some serious work to do from home tonight.  A quick search shows that this is…

86

Smartcard logon over Terminal Services ( RDP redirection )

In a recent post I outlined a number of ‘challenges’ to implementing smartcards.   I also asked about people who were hitting slow logons after implementing smartcards. Well I had a few responses as well as some interest in how RDP redirection works in general.     When a user logs on to a machine…

46

So, you want to use smart cards?

Smartcards, password elimination projects … etc… all good fun. Well, I got around to compiling a number of challenges which may arise should you decide to get rid of passwords and move to smartcards only. I dont claim that this list is complete, and I may do another post where I add some to this.. but…

38

Set WMI namespace security via GPO (script)

    This was an example of setting WMI security via a script  – the specific question was: “Is there a way I can change the permissions on WMI (need to grant remote enable access) so I can grant a service account read access to certain machines via Group Policy?”   This came up on…

30

Audit policy not registering audits

  So there was an interesting case which floated my way the other day. The Audit policies in the domain controllers policy was set to the following, and there were no other policies blocking or changing these.   After a policy update the following events were logged: Log Name:      Security Source:        Microsoft-Windows-Security-Auditing Date:          5/23/2011 7:58:56…

27

"The cryptographic operation failed due to a local security option setting"…Indeed.

Kinda a one off odd one.. but I’ve seen it  more than once… so it gets a blog entry.       Failure to install any items digitally signed.   My most recent experience was with a chap who was getting this error and failed to install MDAC update. His environment: Windows 2000 Server in an…

18

Get a hotfix — without having to call MS…

In this new age of the internet… You now can obtain a hotfix without having to interact with a single soul ( no phone calls etc.. )  Easy and convenient. Take for example my previous post for the netlogon DCR – 928576  which doesnt even have a public article yet.  Try it… http://support.microsoft.com/default.aspx?scid=kb;EN-US;928576   It errors…

16

Smartcard in 2008 and Vista..National ID card? No UPN? No EKU? No problem!

  I recently worked on an issue which combined a number of the things I enjoy about my job.  New technology, interesting problem and satisfied customers.   Here was the problem.   A country in the EU is rolling out national identity cards.  They want to use these cards for all sorts of transactions, including…

16

LDAP client tracing…

ADinsight from the sysinternals toolset is a great tool , but I seem to have problems  with it at times. Specifically on Server 2008  & Vista (maybe due to the way it hooks wldap32.dll) On Vista OS and beyond, there is built in client ldap tracing which can give you similar results  ( with a…

13

2003 SP1 – whats new? Digital Identity Management Service or (DIMS) !

Continuing on my “neat SP1 list”…. There are a lot of new niftyola fixes\features, and one of them is the new Credential Roaming feature otherwise known as Digital Identity Management Service or (DIMS)  One note here – it does require a schema extension, but it does not require a particular Forest functional level or Domain functional…

12