Category: Active Directory

Managing SSH Keys Stored in Active Directory

In a [[https://blog.laslabs.com/2016/08/storing-ssh-keys-in-active-directory/|previous blog post]] we discussed how we can allow users to store their keys in Active Directory and automatically deploy those keys. Now, we will explore how we can allow users to manage SSH keys stored in this manor. First, we need to allow users to update their own `sshPublicKeys` attribute. Allowing self-write…

April 21, 2017
Storing SSH keys in Active Directory for easy deployment

Public key authentication has long been considered one of the most secure methods of remote SSH authentication. However, using the same key-pair for more than one machine can pose security risks, especially if that key is not secured by a passphrase but managing unique keys for each system a user has access to can be nightmare inducing. For this…

August 9, 2016
Create an Active Directory Admin Group Win 2012 R2

—- [[[TOC]]] —- == Foreword == Today we will create an Active Directory admin group in Windows Server 2012 R2. The new group will have typical administrator permissions on the OU that you select. We will be enabling User Creation, Password Resets, Group Creation/Deletion, and Computer Creation/Deletion. A few things that the group will not be able to…

January 23, 2016