if anyone knows any good/comprehensive kql queries for asset inventory
I'd appreciate it.i.e. inclusive of all assets in defender for endpoint
including workstations, servers, network devices etc.
JMSANTOS Copper ContributorJun 10 2021 06:51 AM Any instructions about
what to do with the MBAM client installed in the workstation? Should we
uninstall it before we escrow the BitLocker recovery key? Once you
backup the recovery keys to AD, you uninstall the client or you can wait
till the BitLock...
Hello @NateBarkei , @ckuever0983 , can you validate the Kerberos amoring
is enabled on this computer? Logon with a domain account and run klist
and validate the TGT Cach Flags are 0x40 (FAST) enabled. If the FAST
option is not enabled on the TGT validate the group policy settings ona)
domain control...
Exactly the same problem as @ckuever0983 above. Brand new forest/domain
(Server 2022) to test this out and always get: A Kerberos
Ticket-granting-ticket (TGT) was denied because the device does not meet
the access control restrictions. If this is working properly should
event 4820 provide a device n...
Hello, i setup Legacy Microsoft LAPs when it came out but did not "fully
deploy" it. i have tried since then to reverse it all and i did
accomplish alot so far. i can now confirm that regular users cannot run
to get passwords. i have removed the groups that i created to have
"extended rights". my ad...
Latest Comments