sddl
Delegating AD Admin tasks to non-Admin accounts
Designing a distributed/international Active Directory is certainly the most important piece of a successful AD implementation. One of the issues that should be dealt with is whether you want to allow other people to be Enterprise/Domain Admin or not. If you ask me : it’s not a good idea. You should restrict those rights to […]
Posted in 001_Security, Active Directory, Windows Server | Tagged Active Directory, active-directory-2008-r2-non-administrator-access-to-security-event-log, allow-non-admin-users-to-create-active-directory-accounts, authorize, check-event-logs-on-dc-delegation, delegate-dhcp-administration-2008, delegate-read-only-access-to-the-security-event-log-on-domain-controllers, delegate-security-rights-to-non-domain-admin, delegate-wins-administration, delegated-rights-wins, delegation, dhcp, list-authorization-dhcp-2008, metasploit-exploiting-windows-server-2003-adding-an-administrative-account, netservices, sddl, security descriptor, the-specified-servers-are-already-present-in-the-directory-service-windows-2008-r2, wins-admin-rights, wins-delegate-permissions-to-read
Corelan Training
We have been teaching our win32 exploit dev classes at various security cons and private companies & organizations since 2011
Check out our schedules page here and sign up for one of our classes now!
Check out our schedules page here and sign up for one of our classes now!
Donate
Want to support the Corelan Team community ? Click here to go to our donations page.
Want to donate BTC to Corelan Team?
Your donation will help funding server hosting.
Your donation will help funding server hosting.
Corelan Team Merchandise
You can support Corelan Team by donating or purchasing items from the official Corelan Team merchandising store.
Corelan on Slack
You can chat with us and our friends on our Slack workspace: