Unix interoperability (SSSD) with a Microsoft Domain

SSSD principle: SSSD for SuSE (sles): https://www.suse.com/support/kb/doc/?id=7022002 http://www.novell.com/support/kb/doc.php?id=7014572 RHEL: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/windows_integration_guide/index https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Deployment_Guide/SSSD-Introduction.html Troubleshooting SSSD: https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Deployment_Guide/SSSD-Troubleshooting.html Resolution:   id  <userid> ; getent passwd <userid> Authentication: ssh <userid>@localhost   In addition to redhat guide, there are tones of interesting links: http://thornelabs.net/2014/01/30/authenticate-rhel-5-and-6-against-active-directory-on-windows-server-2008-r2-with-sssd-using-kerberos-and-ldap.html http://www.chriscowley.me.uk/blog/2013/12/16/integrating-rhel-with-active-directory/

What is TLS/SSL ? and demystifying Secure Channel ? Enable/Disable TLS

Web article: https://technet.microsoft.com/en-us/library/cc784450(v=ws.10).aspx https://blogs.technet.microsoft.com/askpfeplat/2017/11/13/demystifying-schannel/ Links related to TLS which I have consulted: Solving the TLS problem ==> https://www.microsoft.com/en-us/download/details.aspx?id=55266 Managing SSL/TLS Protocols and Cipher Suites for AD FS ==> https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/operations/manage-ssl-protocols-in-ad-fs How to restrict the use of certain cryptographic algorithms and protocols in Schannel.dll ==> https://support.microsoft.com/en-us/help/245030/how-to-restrict-the-use-of-certain-cryptographic-algorithms-and-protoc TLS/SSL Settings ==> https://technet.microsoft.com/en-us/library/dn786418(v=ws.11).aspx#BKMK_SchannelTR_TLS10 How to test SSL/TLS: with online scanner:Continue reading “What is TLS/SSL ? and demystifying Secure Channel ? Enable/Disable TLS”

How to bind a MAC to a Windows Domain?

How to bind a MAC to a Windows domain: Third-party Tools: Nomad    nomad.menu Centrify   http://www.centrify.com Procedures and white papers: https://www.pluralsight.com/blog/tutorials/join-mac-to-windows-domain Apple support articles: https://support.apple.com/kb/index?page=search&type=organic&src=support_searchbox_main&locale=en_US&q=active+directory https://www.jamf.com/jamf-nation/discussions/23175/binding-mac-to-ad-issue  

Comment réactiver un iPhone désactivé

Symptome: “iPhone désactivé : Se connecter à iTunes” avec l’option d’appel d’urgence ainsi qu’indiqué : “SIM verrouillée” en haut à gauche de l’écran Mode DFU: – Eteint l’iPhone et branchez le sur le pc avec iTunes ouvert – Appuyez pendant 10 secs sur les boutons Power & Home – Après 10 sec relâchez juste leContinue reading “Comment réactiver un iPhone désactivé”

Apple – ITunes sous Windows ne reconnaît pas mon iPhone, ipad ?

Aucune entrée Apple Mobile Device USB Driver affichée Déconnectez votre appareil de l’ordinateur. Effectuez une capture d’écran en appuyant simultanément sur le bouton principal et sur le bouton Marche/Veille (l’écran doit alors clignoter brièvement). Reconnectez l’appareil à votre ordinateur. Si l’une des sections suivantes s’affiche dans le Gestionnaire de périphériques (device manager en Anglais), agrandissez-les : Périphériques d’images Autres périphériquesContinue reading “Apple – ITunes sous Windows ne reconnaît pas mon iPhone, ipad ?”

What is OAuth? OAuth versus Kerberos ! ADFS and OAuth !

Introduction: When Kerberos was chosen to be AD’s authentication protocol in the mid- to late-1990s, the World Wide Web was a shadow of what the Internet offers today. Although the Kerberos ticket contained an encrypted password hash that could be attacked, there wasn’t any substantial requirement to provide support outside the highly protected corporate firewall.Continue reading “What is OAuth? OAuth versus Kerberos ! ADFS and OAuth !”