Ndayesa kulowa mkati pogwiritsa ntchito
Koma tisanakambirane zachinsinsi komanso momwe tingakonzere, tiyeni tiwone zomwe zasungidwa mu AD.
Active Directory ndi Facebook yamakampani
Koma mu nkhani iyi, inu kale ubwenzi ndi aliyense! Mwina simungadziwe za mafilimu, mabuku, kapena malo odyera omwe anzanu amakonda, koma AD ili ndi zidziwitso zachinsinsi.
deta ndi madera ena amene angagwiritsidwe ntchito hackers ngakhale mkati popanda luso lapadera luso.
Oyang'anira makina amadziwa bwino chithunzi chomwe chili pansipa. Awa ndi mawonekedwe a Active Directory Users and Computers (ADUC) pomwe amakhazikitsa ndikusintha zambiri za ogwiritsa ntchito ndikugawa ogwiritsa ntchito kumagulu oyenera.
AD ili ndi minda ya dzina lantchito, adilesi, ndi nambala yafoni, motero imafanana ndi bukhu lamafoni. Koma pali zambiri! Ma tabu ena amaphatikizanso imelo ndi adilesi ya intaneti, woyang'anira mzere, ndi zolemba.
Kodi aliyense m'bungwe ayenera kuwona izi, makamaka mu nthawi
Inde sichoncho! Vuto limakulitsidwa pamene deta yochokera kwa oyang'anira akuluakulu a kampani ikupezeka kwa antchito onse.
PowerView kwa aliyense
Apa ndipamene PowerView imayamba kusewera. Imapereka mawonekedwe osavuta a PowerShell kuzinthu zapansi (komanso zosokoneza) Win32 zomwe zimapeza AD. Mwachidule:
izi zimapangitsa kubwezeretsa minda ya AD kukhala kosavuta monga kulemba cmdlet yaifupi kwambiri.
Tiyeni titenge chitsanzo cha kusonkhanitsa zambiri za wogwira ntchito ku Cruella Deville, yemwe ndi mmodzi wa atsogoleri a kampaniyo. Kuti muchite izi, gwiritsani ntchito PowerView get-NetUser cmdlet:
Kuyika PowerView sivuto lalikulu - dziwoneni nokha patsamba
Kuchokera pazithunzi pamwambapa, mutha kuwona kuti wamkati amatha kuphunzira zambiri za Cruella. Kodi mwawonanso kuti gawo la "zidziwitso" limawulula zambiri zamakhalidwe ndi mawu achinsinsi a wogwiritsa ntchito?
Izi sizongoyerekeza. Kuchokera
Active Directory ili ndi ma ACL ake
Mawonekedwe a AD Ogwiritsa ndi Makompyuta amakulolani kuti muyike zilolezo pa zinthu za AD. AD ili ndi ma ACL ndipo olamulira atha kupereka kapena kukana kulowa nawo. Muyenera alemba "mwaukadauloZida" mu ADUC View menyu ndiyeno pamene inu kutsegula wosuta mudzaona "Security" tabu kumene inu anapereka ACL.
Muzochitika zanga za Cruella, sindinkafuna kuti Ogwiritsa Ntchito Onse Ovomerezeka athe kuwona zambiri zake, kotero ndidawakana kuti awerenge:
Ndipo tsopano wosuta wamba aziwona izi ngati ayesa Get-NetUser mu PowerView:
Ndinakwanitsa kubisa mfundo zodziwikiratu kuti nβzothandiza mβmaso mwathu. Kuti lizipezeka kwa ogwiritsa ntchito oyenerera, ndinapanga ACL ina kuti ndilole mamembala a gulu la VIP (Cruella ndi anzake ena apamwamba) kuti apeze deta yovutayi. Mwa kuyankhula kwina, ndinakhazikitsa zilolezo za AD kutengera chitsanzo, zomwe zinapangitsa kuti deta yachinsinsi ikhale yosatheka kwa antchito ambiri, kuphatikizapo Insiders.
Komabe, mutha kupanga umembala wa gulu kuti usawonekere kwa ogwiritsa ntchito pokhazikitsa ACL pa chinthu chamagulu mu AD molingana. Izi zidzathandiza pankhani yachinsinsi ndi chitetezo.
Mu zake
Ndinatha kubisa umembala wa Cruella ndi Monty Burns mu gulu la anthu a VIP, zomwe zinapangitsa kuti zikhale zovuta kwa ozembera ndi anthu omwe ali m'kati kuti awone zowonongeka.
Nkhaniyi idapangidwa kuti ikulimbikitseni kuti muyang'ane m'minda
AD ndi zilolezo zofananira. AD ndi chida chabwino, koma ganizirani momwe mungachitire
ndinkafuna kugawana zinsinsi ndi zambiri zaumwini, makamaka
zikafika kwa akuluakulu a bungwe lanu.
Source: www.habr.com