Integrating Truecrypt with Active Directory
Not claiming any subject matter expertise in crytography but merely looking at Truecrypt as a potential candidate for enterprise use and the challenges faced by systems administrators managing such a tool.
Asking users to change the truecrypt ( full disk encryption ) password when they change their domain account password every 60 or 90 days. Ideally, if it is the same password for both the Active Directory domain account and for Truecrypt, it can potentially reduce support calls.
From zero to boot in 0 seconds !
Simply leave your Microsoft(R) Windows(TM) based computer powered on, like you would leave your SmartPhone on all the time. That’s going from zero to boot in 0 seconds ! But that comes with a catch or problems (lots of them) that your systems administrators don’t want to deal with. If your computer could probe a network connection to your corporate …
Changing domain password over VPN
In Active Directory environment, the default domain policy, specifically the password expiration policy, can cause resource access issues to VPN users who typically login with cached credentials. When their password is about to expire, they do not receive password change notification, which ultimately results in their account being locked out. This issue gets resolved by the users having to call …
Group Policy Updates
Group Policies apply when the computer starts up or when the user logs in. And after that event, every 90 minutes on a domain computer. This may work very well for LAN connected computers, however, for remote computers that generally start up without being connected to corporate network and the user logs in with cached credentials, the event based Group …
Duplicate DNS records
DNS Scavenging is a feature that must be enabled so the stale duplicate DNS records or stale DNS records get deleted safely and after performing necessary checks and balances. However, it comes with its own set of challenges. Administrators managing desktops and laptops have to work with DHCP Lease period and DNS Scavenging no-refresh and refresh period in order to …
