That one caught me off guard. I never thought of anybody putting a mac in an NAP setup. Thanks to Dan from Network Services Group (http://networkservicesgroup.com/default.aspx)for walking into our classroom at the right time. Dan happened to be at the same training site as I am this week. He recommended going to http://unet.co.kr/nap/ to download an NAP client for Macintosh. Sure enough, someone thought about putting a Mac in an NAP.
With the AD Recycle Bin Turned on, What Happens when you Create a User Account with a Password that does not meet the Password Policy?
This was an interesting observation from one of my Windows Server 2012 classes. While working with the AD Recycle bin in a lab, one of my students discovered some interesting accounts that were created. When he created user accounts that did not meet password complexity requirements, an account is temporarily made and then deleted. When a new password is provided that meets the password requirements, then a new account is made. We discovered this in two places. First off in the Active Directory Administrative Center. This is what caused the initial confusion. Take a look. This is in the Deleted Objects OU. You can see multiple deleted accounts for Test2 and one for Test3. Test3 is a valid, functioning user account. Using the PowerShell command Get-ADObject –IncludeDeletedObjects –Filter * –Properties ObjectSID we can see that indeed, two accounts were created, with one of them deleted. Notice the RID portion of the SID is different. ...
Comments
Take a look at the product link above. I do not keep Macs on hand but I see a SHV download for MAC from this site. Give it a try and post you findings here if you like.
Jason