The maximum number of simultaneous remote RDP sessions is two for all versions of Windows Server OS (+ one console session that can be accessed by connecting with the mstsc /admin command). These Remote Desktop sessions can be used for administrative purposes. They do not require the installation of an RDS Licensing Server or the purchase of RDS CALs.
Continue reading “Multiple RDP Sessions for a Single User on Windows Server”
The default script execution policy settings in Windows 10 and 11 prevent unsigned PowerShell scripts from running. This means that if you try to manually run a PS1 script file or a PSM1 module from the powershell.exe (or pwsh.exe) console, you get an error:
Continue reading “PowerShell error: Running scripts is disabled on this system”
When you try to install or uninstall a program in Windows, an error may occur:
Continue reading “Fix: Another Installation Is Already in Progress”
This article is about the backup and recovery of Group Policy Objects (GPOs) in the Active Directory domain environment. If the GPO files in SYSVOL are modified, corrupted, or deleted, GPO backups allow you to revert to a previous version of the policy.
Continue reading “Backup and Restore Group Policy Objects (GPOs) in Active Directory”
In order to safely run third-party services in Windows, you can use a user account that doesn’t have local administrator permissions. To do this, you must change the local security policy settings to allow the user to log on as a service.
Continue reading “Run a Windows Service with a Non-Admin User Account”
The built-in WindowsAdministrator account has unlimited rights on the computer and, if compromised, gives the attacker complete control over the system. In this article, we will look at some basic techniques that can help secure Windows’s built-in Administrator account.
Continue reading “Securing the Built-in Administrator Account in Windows”
You can use self-signed certificates for internal use or testing of HTTPS web services. This means you don’t need to buy a certificate from a commercial CA or generate a free Let’s Encrypt certificate. This article describes how to use the OpenSSL tool to issue a self-signed certificate in Linux, bind it to the Nginx web server and add it to the trusted certificate list on the user’s computer.
Continue reading “Creating a Self-Signed Certificate in Linux with OpenSSL”
Split Brain DNS allows you to configure the DNS server to return different responses depending on the request source address (IP subnet). In this post, we will look at how to configure Split DNS on Windows Server using DNS policies (supported on Windows Server 2016 and newer).
Continue reading “Configuring Split-Brain DNS on Windows Server”
Trust relationships between AD domains allow users from one domain to authenticate to another domain. Trusting relationships are most often configured when merging or migrating multiple organizations.
Continue reading “Create Trust Relationship Between Active Directory Forests”
Active Directory Certificate Services (AD CS) allows you to deploy your own PKI infrastructure on a domain network and use it to issue and manage certificates. In this article, we will look at a typical Certification Authority (CA) deployment scenario: installing a root CA and subordinate enterprise AD CS on two Windows Server hosts, and configuring Group Policy to issue certificates in a domain.
Continue reading “Install Active Directory Certification Authority (ADCS) on Windows Server”
