Does anyone know how I can:
create IP security policy
manage IP filters and IP filter actions
PROGRAMMATICALLY on windows 2003? Not use Microsoft GUI utility.
I tried to achieve this by programming with windows registry,
all data I need that is under HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\windows\IPSec\Policy\Local
but I have no idea with some data. e.g the value of IPsecData,
Thank you
This is not programmatically but not GUI either:
You can use command-line netsh ipsec...
http://technet.microsoft.com/en-us/library/cc739550(WS.10).aspx
Related
Im a newb to AWS, so please go easy on me. We currently just spun up a custom Windows 10 instance in AWS. I was able to login via RDP successfully, but I'd like to create a new user within the instance so they can login with a different user account using RDP. Any thoughts would be much appreciated.
Okay, After your response to my first, I think I see what you are asking. Plase watch this video:
https://www.youtube.com/watch?v=rgk2w3dQGSo
Download the RDP. Save it. You can then Edit the .rdp and enter the user name and password you created in Windows.
You can create users in the User Management Console in Windows. Ensure they have the rights needed (Remote Desktop User, Administrator, etc).
Enjoy!
Once an Amazon EC2 Windows instance has been launched, it is just a normal Windows computer.
Therefore, you should use use the standard Admin tools to create the user on the Windows computer, with their own username and password.
It is also recommended that you change the random Administrator password after initial login, or (even better) connect the instance to Active Directory or whatever standard authentication system your company uses.
Technoob here. I just figured out why all of you are having trouble. You need to go to the security group the machine is a part of and open port 3389 to your public IP address (ipchicken.com works). Enjoy
If you are trying to connect from another computer then you have to change the inbound rules.
Go to the security groups of your instance. Go to the inbound rules. Add ipv4 and ipv6 as a new rule and apply it. Download the RDP File and try to connect again. It worked for me.
I am dealing with an interesting issue. I am using AWS SSM to manage my Windows Updates and going through a 3rd party proxy server (which I have no control over, nor a choice to use it). I am attempting to automate proxy settings (found here:https://forums.aws.amazon.com/thread.jspa?messageID=782297) using GPO or any other method (.ps1, .cmd) available. The only method I have found requires the following:
PS C:\Users\Administrator\Downloads\PSTools> .\psexec -i -s -d cmd
Then in the System User Context CMD prompt;
C:\Windows\system32>whoami
nt authority\system
C:\Windows\system32>inetcpl.cpl
Configure the settings manually according to the users internet
connection settings.
I have been digging around and trying to use batch files, group policy preferences...and I am stumped. Does anyone have any ideas? Also, I have tried "How to configure IE proxying for the local system account?" already to no avail.
You're right there, you almost made it. Run Internet Explorer (iexplore.exe), not just inetcpl.cpl, under that user context, and configure the proxy inside Internet Explorer.
i'm looking for a way to enable or disable dhcp on a network interface via win32 api.
actually i solve this by using wmi but i would like to do this via win32 api because i would like to workaround corrupted wmi's.
i found a thread where they do this via registry api: On enabling Network adpater, Autoconfiguration IP address getting set but is this the only way to achieve?
cheers, ceth
i finally did it with wmi and shelling out netsh.exe as a backup if wmi is not working. the way over the win32 api is quite too unhandy..
As a network auditor I am using WMI to query windows PC and get relevent information.
secpol.msc gives the account and local policies. Is there a way that I can read all the parameters in the policy to check that users have configured them as per company norms.
Thank You
You can use the RSoP WMI Classes to get the Group Policy settings and the Group Policy Settings Reference for Windows and Windows Server which basically is a set of excel files which contains the windows registry keys where is stored such info.
I integrated a small http server in my software distribution, intended to allow access to my installed application from the customer's LAN.
Right now, the customer has to manually update the firewall's list of trusted applications. I want to either open a hole in the firewall at install-time, or to ensure that the firewall prompts the user to allow my web server as a trusted application, able to receive inbound traffic.
Any solution should work with the built-in Windows Firewall at minimum.
Suggestions?
I would start out by reading up on the following sections on MSDN. This should give you enough background to know what you need. In short you could be looking to talk to the INetFwMgr COM object.
XP
http://msdn.microsoft.com/en-us/library/windows/desktop/aa366453%28v=vs.85%29.aspx
Vista or later INetFwPolicy2
http://msdn.microsoft.com/en-us/library/windows/desktop/ff956124(v=vs.85).aspx