The Active Network
ActiveMac Anonymous | Create a User | Reviews | News | Forums | Advertise  
 

  *  

  Read-Only Domain Controller and Server Core
Time: 00:52 EST/05:52 GMT | News Source: *Linked Within Post* | Posted By: Kenneth van Surksum

By default, an Read Only DC doesn't actually store any passwords ("user secrets"). Not only that, but the replication is unidirectional so an RODC won't replicate any information back to the primary domain controller. These features in-turn reduce the attack surface of a Windows Server.

The story that is trying to be won with this new feature in this release is the Branch Office story. Basically, for a company that is large enough to have branch offices (where physical security might not be as strong), instead of deploying a fully blown domain controller, you can now deploy a read-only domain controller. This ensures that if the remote domain controller is compromised, that the entire AD forest is not compromised (since by default, there is very little chance that a username/password combination is cached that could be used to compromise the rest of the domain). Combine this new features with the new "Server Core" installation option, and you come one step closer to a true "domain appliance." What is Server Core? Server Core is an install path of Longhorn Server (as of Beta 2) that does not install the unnecessary components of the OS (like the GUI or applications like Internet Explorer (after all, why in the world would I need Internet Explorer on a Server?!?!?)). Not only does this further reduce the attack surface of Windows Server, it also will minimize the amount of patching and maintenance that is required. This is something that the Linux/Unix servers have been doing great for a while, so I'm happy to see Windows Server finally catching up in this space!

Write Comment
Return to News

  Displaying 301 through 303 of 303
Prev | First
  The time now is 7:01:28 AM ET.
Any comment problems? E-mail us
#301 By 4240821 (62.76.153.72) at 11/23/2024 11:43:43 AM
https://justpaste.me/CVYv1
https://justpaste.me/CPHY1
https://justpaste.me/Bruf1
https://justpaste.me/C83w1
https://justpaste.me/CfS9
https://justpaste.me/Byjv4
https://justpaste.me/Bcd7
https://justpaste.me/Bx0Z1
https://justpaste.me/Bw20
https://justpaste.me/Bbm72

#302 By 4240821 (82.117.86.164) at 11/23/2024 2:38:21 PM
https://www.google.lu/amp/s/sluts.su/get/a86/a86abohyfdyyhmfrnd.php
https://www.google.mn/amp/s/sluts.su/get/a38/a38lgqqrpdskypdtfo.php
https://www.google.me/amp/s/sexonly.su/get/a240/a240sujdsausuvlidfg.php
https://www.google.mn/amp/s/sexonly.top/get/a238/a238tkvkodogppypyag.php
https://www.google.mk/amp/s/sexonly.top/get/a21/a21punalixgafwqpxg.php
https://www.google.me/amp/s/sexonly.su/get/a57/a57asbeoronldiyjfz.php
https://www.google.me/amp/s/sexonly.su/get/a80/a80hnedcdvbtxvzjtz.php
https://www.google.lv/amp/s/lustful.su/get/a277/a277cvvhhwtqzmoajtd.php
https://www.google.ms/amp/s/sexonly.top/get/a266/a266iwmoatramkeqxrd.php
https://www.google.lv/amp/s/sluts.su/get/a96/a96ryizutzdyktaxca.php

#303 By 4240821 (62.76.153.72) at 11/24/2024 12:08:04 AM
https://justpaste.me/Bx0Z1
https://justpaste.me/C8EX1
https://justpaste.me/C6Dh
https://justpaste.me/Bc6t1
https://justpaste.me/C0lh
https://justpaste.me/CU3n
https://justpaste.me/CBNy1
https://justpaste.me/BpFw2
https://justpaste.me/CUEc
https://justpaste.me/Bdfm6

Write Comment
Return to News
  Displaying 301 through 303 of 303
Prev | First
  The time now is 7:01:28 AM ET.
Any comment problems? E-mail us
User name and password:

 

  *  
  *   *