Monthly Archives: July 2014

KnowledgeBase: Active Directory replication fails with an RPC issue after you set a static port for NTDS

In environments where Active Directory needs to traverse network boundaries, the network ports for remote procedure calls (RPCs) for Active Directory replication can be configured as a static port instead of the default configuration of a random high port. However, this might pose problems in your Windows-based domain environment.   The situation In a Windows-based […]

0  

KnowledgeBase: The Active Directory Administrative Center crashes in Windows 8.1 or Windows Server 2012 R2

The Active Directory Administrative Center (dsac.exe) offers a Graphical User Interface (GUI) for many of the features added to Active Directory in recent years, like Dynamic Access Control, Authentication Policies and Authentication Policy Silos. Unfortunately, last year, a couple of bugs were found. Luckily, they got squashed.   The situation The Active Directory Administrative Center […]

0  

Security Thoughts: Leveraging NTLM Hashes using Kerberos RC4-HMAC encryption (AKA Aorato’s Active Directory Vulnerability)

In a blogpost today, Tal Be'ery, Vice President Research at Aorato, an Israeli security company consisting of veterans of the Israeli Defense Forces specializing in Active Directory, published how weak encryption enables an attacker to change a victim’s password without being logged. Labeled as a vulnerability in Active Directory, this information sparked some controversy, so […]

0