Windows security baseline recommend configuring a threshold of 10 invalid sign-in attempts
Account lockout threshold (Windows 10) - Windows security | Microsoft Docs
There is a built-in tool called “Resultant Set of Policy” (RSoP) that simulates the policy settings applied to computers and users using Group Policy. It acts as a query engine that polls existing policies based on site, domain, domain controller, and organizational unit, and then reports the results of those queries.
To launch Resultant Set of Policy, press Win + R to fire up the Run dialog box, type rsop.msc, and press Enter.
The tool fires up and scans the
active policies and displays them within the tool. You will still need to go
through the folders to find out each active policy applied to the account and
computer.
GPResult
Alternatively, there is also a
command line called GPResult that you can also use to collect active
Group Policy settings. Simply open a Command Prompt and run the following
command.
gpresult /scope
user /v
This is to search and show all the
active policies applied to the current user. To find all policies applied to
the PC, run the following instead in an elevated Command Prompt window.
gpresult /scope
computer /v
Even more, you can use GPResult to gather Group Policy information applied to certain user account from a remote computer, such as below:
gpresult /c computername /u username /p password /user targetusername /scope user /r
Or, all Group Policies applied to a remote computer:
gpresult /c computername /u username /p password /scope computer /r
Note that the switch /r is to display RSoP
summary data while /v is to display verbose policy
information.
Cables here, cables there, cables everywhere!
Before I discuss solutions to help you get more organized, let’s look at some examples of horrible cable management. Be warned: some of these examples may just make you cry;
One of the leading
Data Centre I visited had this bad cable management and we had to wait for
another two weeks to decommission riverbed wan accelerator appliance! Guess
what. To pull out the customer appliance they obviously had to plan for a
production downtime.
If you dread walking
into your server room to troubleshoot a network issue because of bad cable
management or worse, dread having to give higher-ups a tour of your facilities,
then it’s about time to straighten up your cable management system.
Some internet glimpses for some of the worst cable hell/ wiring ever seen.
Here are
some things you can do now to avoid joining the terrible cable management hall
of fame photos I just highlighted above.
Proper
cable management will not only support existing infrastructure, but will also
allow to accommodate future growth.
Consider
these tips for your next project:
Efficiency
Making
our installations more efficient is one of the most beneficial tasks a person
should consider. Not only does it save time but can decrease issues down the
line. This is the plus side of proper cable management. Cable management is the
organization of electrical or optical cables in a cabinet or an installation.
The term comes from the goal of planning. Cable installations vary from job to
job but for the most part you can see how difficult it is to properly situate
each cable to make it easy to work with. Problems can happen down the line with
too many cables around each other with possible issues of unplugging or
identifying which cable is the cause. This is why cable management is very
crucial to a smooth work place and installation.
Safety
Proper
cable management can increase safety measures in the work place. Fire is a
cause for concern after cable installation and loose cable can become tangled
with each other possibly creating a spark. This spark can then turn into a fire
damaging your network, data center and building and ofcoure financial loss!
There is also the chance of someone coming by where the cables are installed
and tripping or catching on the cables resulting in an injury. You never know
what might happen and it's best to keep a clean and organized setup
Air Flow
An important
aspect to cables longevity is the abundance of air flow during installation.
The more air flow the better is the goal when cable is connected/running. This
increases energy efficiency as well. Keeping temperatures low and consistent is
beneficial to cables structure and performance. Increased temperatures can
damage the cables jacket and do harm to its inner workings. Keeping your cables
tied together and out of the way will open up airways to get to the cables to
prevent temperatures from possibly increasing surrounding the cables.
Diagnosis
Correct cable management can make life easier when going back to troubleshoot the problem with your cable. Organizing your network with various colors can help you trouble shoot problems down the line and can help in managing future additions. Plus, you'll get major props from others for a well managed setup.
Change your logon server on your PC
1. open CMD in elevated mode.
C:\Users\rinith> echo %logonserver%
result (before change):
\\adc-dhcp
syntax: set logonserver=//servername
this sets the new logon server (pref. PDC)
C:\Users\rinith> set logonserver=//pdc2020
check the logon server again...
C:\Users\rinith> echo %logonserver%
result:
//pdc2020
c:>time
c:>echo %logonserver%
result:
\\pdc2020
Set time as that of you logon server
c:>net time %logonserver% /set /y
this will update the client time same as that of domain controller time
c:>time
corrected time displays
The ability to administer and maintain up-to-date user lists and groups is critical to the security of an organization.
Using the GUI
There are a number
of different ways to determine which groups a user belongs to. First, you can
take the GUI approach:
1. Go to “Active
Directory Users and Computers”.
2. Click on “Users” or
the folder that contains the user account.
3. Right click on the
user account and click “Properties.”
4. Click “Member of”
tab.
Using the Command Line
gpresult /V
You’ll get output
that looks like this (I’ve truncated it to only include the group info):
Another command line to export to an output file
dsquery group -name ‘groupname’ | dsget group -members | dsget user -display >> outputfilename.txt
Common name:
|
|
Organization:
|
Your company’s
legally registered name (e.g., YourCompany, Inc.).
|
Organizational unit:
|
The name of
your department within the organization. This entry will usually be listed as
"IT", "Web Security", or is simply left blank.
|
City/locality:
|
The city where
your company is legally located.
|
State/province:
|
The
state/province where your company is legally located.
|
Country/region:
|
The
country/region where your company is legally located. Use the drop-down list
to select your country.
|
Cryptographic service
provider:
|
In the
drop-down list, select Microsoft RSA SChannel Cryptographic Provider (unless
you have a specific cryptographic provider).
|
Bit length:
|
In the
drop-down list, select 2048 (unless you have a specific reason for
using a larger bit length).
|
