Application Pool Isolation

around lunchtime on February 3, 2008  No Comment

Ken Schaefer has written a great article about total application pool isolation in IIS 7.0. I didn’t yet know this, but the guys and girls at the IIS team are making a beautiful product.

Which service principal name are registered?

around lunchtime on January 7, 2008  No Comment

Wanna know if a particular service principal name is registered?

Add the following command to a batch file (called something like “get-spns.bat”) and you get a list of SPN’s registered with a given name and which account is associated with the SPN.

ldifde -f spns.txt -s domaincontroller -r “(|(msDS-AllowedToDelegateTo=*%1*)(servicePrincipalName=*%1*))” -l msDS-AllowedToDelegateTo,servicePrincipalName

usage: get-spns.bat servername/hostheader

open up the created spns.txt and voila.

Secure server passwords

late at night on October 31, 2006  No Comment

This is a favorite link I use very often to generate complex passwords.
http://www.winguides.com/security/password.php

Hope you find it usefull.