Unconstrained Kerberos delegation is one of the most dangerous misconfigurations in Active Directory — and one of the most common. Any server with this flag set is silently caching TGTs for every privileged user who connects to it. Here's how to find every account configured for unconstrained delegation in your environment and fix it with PowerShell.

Finding password-protected Office files on a large file server isn't as straightforward as it sounds. Two common PowerShell methods either open every file in Office or consume enough RAM to bring a server to its knees. Here's the method that actually works.

Duplicate SPN Active Directory issues cause Kerberos authentication to fall back to NTLM, a weaker protocol vulnerable to relay attacks, pass-the-hash, and brute force cracking. Finding and removing duplicate SPNs is a straightforward fix that most environments overlook entirely. What is a Service Principal Name? Service principal names (SPN) is used by Kerberos to link a service to a service account. This allows a user to access a service without knowing the service account