Disable Local User Accounts in Windows with GPO and PowerShell

Best security practices for Windows domain networks recommend disabling local user accounts on computers and servers in an Active Directory domain. Local users who have administrative permissions on a computer can be a weak point in the security of your network. You can use tools such as Windows LAPS (Local Administrator Password Solution) to set unique, complex passwords for local administrators, or you can use AD Group Policies to completely disable local administrator and user accounts.

Continue reading “Disable Local User Accounts in Windows with GPO and PowerShell”

Fix: Unable to Join Computer to Active Directory Domain

A number of errors can occur when you try to join a Windows machine to an Active Directory domain. Most of them are fairly typical and can be fixed quite easily, as the cause of the problem is shown right there in the error window.

Continue reading “Fix: Unable to Join Computer to Active Directory Domain”

Install and Configure NFS Client on Windows

The Network File System (NFS) client is not installed by default on Windows Server 2022/2019/2016/2012R2 and Windows 11/10 desktop versions. To install it, open the Server Manager and select Add Roles and Features -> Client for NFS.

Continue reading “Install and Configure NFS Client on Windows”

USB Devices Passthrough over IP Network on Windows with Usbipd-win

The inability to pass through a connected USB device from a Hyper-V host to a virtual machine is one of the major shortcomings of the Microsoft hypervisor. You can use the open-source project usbipd-win to solve this problem (https://github.com/dorssel/usbipd-win). The usbipd-win utility allows you to pass through (redirect USB device or key including HASP) over the network from a Windows host to any Hyper-V virtual machine, remote computer running Linux, Windows, or WSL2.

Continue reading “USB Devices Passthrough over IP Network on Windows with Usbipd-win”

Setting Process CPU Affinity in Windows

By default, a running app in Windows can run on any of the available CPU cores. The operating system manages and distributes processes between cores. However, you can manually bind certain processes (applications) to processor cores in Windows using the Processor Affinity feature. Let’s see how to bind a program (process) to specific CPU cores in Windows.

Continue reading “Setting Process CPU Affinity in Windows”

How to Remotely Logoff Users in Windows?

Several times I came across a situation where one of the users on a Windows Server host with an RDS (Remote Desktop Services) role ran an application that leaked and occupied all available RAM. It was impossible to connect to such a host via RDP remotely. To kill the leaked process, you need to remotely logoff this user.

Continue reading “How to Remotely Logoff Users in Windows?”