For the next couple of posts I’ll be looking into AD security and auditing. In this article we’ll look at how to use Get-ADUser to list all recently created accounts.
With the increasing number of cyber attacks, security is at the top of most IT departments agenda. There are many checks you can perform to make sure AD is safe and secure, and that only valid or approved modifications have been made to user accounts. I’ll look at AD auditing in a future post, but this will be a handy snippet of PowerShell to help you identify recently created AD accounts, and a bonus bit of code to identify recently modified accounts!
BitLocker Drive Encryption is the technology in Windows 10 which can encrypt your hard disk drive and keep your data safe. It will usually require you to enter a pin/usb key/certificate to allow access to the encrypted hard disk drive.
But how do you check the status of BitLocker on your computer?
It’s good practice to send WatchGuard Firebox traffic logs to a WatchGuard Dimension server so that you have a separate historic log of activity, as a Firebox won’t retain its logs over a power cycle. The WatchGuard Dimension server can be useful for troubleshooting, but also has a wealth of reports available as well.
To be able to send log traffic to the WatchGuard Dimension server it needs to be encrypted, so you need to supply enter an identical key on the Firebox and in the Dimension server.
If you have multiple Fireboxes you’ll need to know the existing encryption key so you can set it on the additional Fireboxes.
If you don’t know the encryption key, here is how to change it on the WatchGuard Dimension server (don’t forget to change it on existing Fireboxes).