Configuring LAPS (Part 2)- Configuring and Deploying Group Policy

This post is the second part of a two-part series on configuring and deploying the Microsoft Local Administrator Password Solution (LAPS). The first post covered the steps needed to configure Active Directory to support LAPS. That post can be found here . This post will cover the steps needed to enable the LAPS functionally on devices.
Continue reading “Configuring LAPS (Part 2)- Configuring and Deploying Group Policy”

Configuring LAPS (Part 1)- Configuring Active Directory

Why is Local Administrator Password Management Needed?

The question of how to deal with users having administrative rights on computers or other network resources is one that has many different answers and has evolved over time. While the scenarios around network and domain administrative access may be more complex, the local administrative rights scenario should be very similar for almost everyone.

Continue reading “Configuring LAPS (Part 1)- Configuring Active Directory”

Managing User Identities in ADFS

Windows Active Directory - Now MicroNow Micro’s Micah Linehan¬†identifies common issues with identities in an ADFS environment and provides insight on how ADFS and directory synchronization actually work.

User Creations and Troubleshooting
User management after deploying ADFS can be more confusing to the direct staff and those who support it. For example,

  • Are the addresses stuck as .onmicrosoft.com and not switching?
  • Are staff unable to add in alternate email addresses?
  • What about directory synchronization errors?

It is amazing how simple process and workflow user account provisioning can remediate most of those issues. Here are a few things that can ease a lot of issues with user identities:

Continue reading “Managing User Identities in ADFS”