Thursday, April 29, 2021

LDAP Over SSL Windows 2019 using selfcertificate

 1. Create self certificate using powershell

     New-SelfSignedCertificate -TextExtension @("2.5.29.37={text}1.3.6.1.5.5.7.3.1") -KeyUsage KeyEncipherment,DataEncipherment -DnsName "*.xxx.co.id" -notAfter $([datetime]::now.AddYears(10)) -CertStoreLocation cert:\localmachine\my -FriendlyName LDAPS

2. open certificate console "certificate (local computer)"

    -go to > personal > certificate > right click certificate and then click Export (chek "yes, export the privatekey")

3. at same console  go to > trusted root certification authorities > certificate > right click > all tasks > import > choice certificate at above

4. open certificate console " certificate - Service  (active Directory Domain Service) on local computer

   > Go to NTDS\Personal > Certificates > right click > all tasks > import > choice certificate at above

 

Posted by at No comments:

Thursday, April 08, 2021

disable default share C$

Create the AutoShareServer and AutoShareWks registry values and  set to 0

running as following;

  1. Click Start, click Run, type regedit, and then press ENTER.
  2. Locate and then click the following registry subkey: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanmanServer\Parameters 
  3. Create  AutoShareServer and AutoShareWks DWORD values in the LanmanServer\Parameters subkey are configured with a value data of 0. 
  4. Quit Registry Editor.
Posted by at No comments:
Subscribe to: Posts (Atom)