Security Archives - InfoTech Ninja

Secure Active Directory Passwords from Breaches

Audit and harden Active Directory against breached passwords using Lithnet Password Protection and the Have I Been Pwned compromised hash list. Covers installing Lithnet PP on a Domain Controller, syncing the HIBP store, running the Audit-Passwords.ps1 script to find pwned accounts, and configuring the GPO that rejects new pwned passwords on every set/change.

May 6, 2026 12 min read

Read More →

Systems Admin

Fix the Not Digitally Signed Error When Running a PowerShell Script

Why downloaded PowerShell scripts trigger a ‘not digitally signed’ error and how to fix it. Covers the Mark of the Web (Zone.Identifier) NTFS alternate data stream, three fix options (GUI Unblock, Unblock-File cmdlet, -ExecutionPolicy Bypass), and the execution policy values you should and should not use.

May 6, 2026 8 min read

Read More →

Systems Admin

Implement Domain Name System Security Extension (DNSSEC)

Learn how to implement DNSSEC on Windows Server to protect against man-in-the-middle DNS attacks. This step-by-step guide covers the Zone Signing Wizard, configuring Key Signing Keys (KSK) and Zone Signing Keys (ZSK) with RSA-SHA-256, enabling NSEC3 and Trust Anchor distribution, verifying the padlock icon, and best practices for key rotation and monitoring.

May 6, 2026 7 min read

Read More →

Systems Admin

Enable Active Directory Auditing

Learn how to configure Active Directory auditing via Group Policy on Windows Server 2008 R2 and later. Track account changes, directory service modifications, and policy updates across all domain controllers.

May 6, 2026 4 min read

Read More →

Tag: Security

Secure Active Directory Passwords from Breaches

Fix the Not Digitally Signed Error When Running a PowerShell Script

Implement Domain Name System Security Extension (DNSSEC)

Enable Active Directory Auditing