Posts Tagged ‘Active Directory’

How to automate a change of NetBIOS settings in properties of a network connection in Windows

June 4, 2015 2 comments

NetBIOS and LLMNR protocols is a really bad legacy in Windows (from security perspective). They should be disabled in all networks where DNS is sufficient means of name resolution.

There are three options:
Read more…

AD base DN in group mapping on Palo Alto

June 24, 2014 Leave a comment

I have just had some hard time configuring AD group mapping on a PA firewall. The firewall kept saying “invalid credentials” (though I had them triple-checked, re-set the password and made sure all my AD replication completed). I ended up doing a packet capture on PA which told me that in fact my context was wrong:


The solution was to go to ADUC, enable Advanced view and copy/paste object’s DN (which corrected a typo I made):



Categories: Palo Alto Tags: ,