I have found a tool that will allow you to share passwords in a secure way. This tool has been written by the Pinterest team and need the following requirements: Redis Python 2.6, 2.7 or 3.3+ Snappass Github description: It’s
The authentication protocol within a Microsoft infrastructure since the Windows 2000 time frame has been Kerberos. The Kerberos token leverages a predefined buffer to house authorization requests. This predefined Kerberos buffer size is set by the MaxTokenSize setting found in
If you have enabled in your domain group policy the password complexity (see below), users will probably have some troubles to find the right password that meet these requirements. The complexity requirements are explained in the “Explain” tab of the
Symptom While connecting on a Windows Server 2012 using RDP you might notice the following error: Remote Desktop Connection: An authentication error has occurred. The Local Security Authority cannot be contacted Cause This is probably due to the cached account
Very useful tool to share secret by providing a single-use URL : When you send people sensitive info like passwords and private links via email or chat, there are copies of that information stored in many places. If you use
List Kerberos ticket with Powershell Great script found here to list cached Kerberos ticket with Powershell. This script has been written by Tim Springston [MSFT]. Description: On a specific computer the script is ran on, this script finds all logon
Very good open source software to build your own OTP solution. It is called PrivacyIDEA. This product offers a lot of features : Authentication via a REST API with easy authentication with JWT. Returns easy parsable JSON output Can act as
Check whether your private key matches your SSL certificate If you want to check whether your private key matches your SSL certificate, there are three openssl command to run on: the certificate file the private key file the certificate request
Useful commands to ban or unban an IP address from cli. For that we will use the fail2ban-client command. Unban Before unban an ip address, you have to find the jail where the ip address has been ban. To do
Generate CSR for multiple domain names Here is a simple tip to generate a CSR containing SAN (Subject Alternative Names) with OpenSSL in two line. The first step is to generate the private key: openssl genrsa -out your_private.key 4096 Subject