2008r2

Creating a DNS Stub Zone in Windows Server 2003/2008/2012

There comes a time when you may be required to integrate a more complex DNS infrastructure other than a policy of  “all requests come here and then go out to the web” for resolution.

Lets say, you work at Company X which operates a Windows DNS infrastructure of “domain.com”. Changes are you run a very similar principle to the above. Perhaps your DNS servers are your Active Directory Domain Controllers and when they are unable to resolve an address of something.domain.com, it simply forwards the DNS query out into the ether (perhaps this might go to your ISP or even direct to the root DNS servers around the world).
Continue reading “Creating a DNS Stub Zone in Windows Server 2003/2008/2012” »

Adding Yubikey 2 factor authentication to your Red Hat Enterprise Linux estate

A few weeks ago I covered how to integrate the YubiRadius Virtual Appliance into FreeIPA which you can find here, or Microsoft Active Directory which you can find here.

This article is a really quick walk though on how to take your authentication one step further, and add 2 factor authentication into the same process for your Red Hat Enterprise Linux server estate.

Continue reading “Adding Yubikey 2 factor authentication to your Red Hat Enterprise Linux estate” »

Creating a Moodle LMS with Active Directory Users

Moodle-logo

For those who aren’t aware, Moodle is an open source Learning Management System (LMS) which gives you the ability to teach courses online. I’ve used it for years and I think its brilliant. You can use it to teach in junior and high schools, but also you can use it in a corporate environment as […]

YubiRadius integration with group-validated Active Directory Users using LDAP

This article will show you how to set up the YubiRadius Virtual Appliance (v. 3.5.1) for User validation against a Microsoft Active Directory 2008R2 infrastructure.

You can obtain the YubiRadius Virtual Appliance from the good people over at Yubico, or just click here

This guide is not meant to show you how to configure a virtual appliance in your choice of Virtualization technology, although as I am using KVM, a special thanks to Gavin Spurgeon for getting this VA converted and working smoothly (even with virtio for the icing on the cake).

Continue reading “YubiRadius integration with group-validated Active Directory Users using LDAP” »

Web proxy filtering with SquidGuard – Using Active Directory group memberships

This guide will give you a walk through how to configure your existing Squid proxy server to provide content filtering capabilities for your Active Directory users.

This guide has been produced using Red Hat Enterprise Linux 6.3 and a Microsoft 2008r2 Active Directory domain.

If you currently do not have an existing Squid installation, you can follow my previous article on how to configure Squid for Active Directory authentication.

To start with, if you have read this far, you most likely already have an existing Squid installation on a server that has system authentication back to Active Directory. Follow the below steps to add Content Filtering with SquidGuard.

Continue reading “Web proxy filtering with SquidGuard – Using Active Directory group memberships” »