Sort of OT: Resurrecting some old Wook Lee Challenge questions

  • 142 Views
  • Last Post 05 November 2015
gkirkpatrick posted this 10 October 2015

I was cleaning out some old OneNote files, and came across a mis-filed list of questions that we used for one of the early Wook Lee Challenge things at TEC 2011. Because there are so many (relative) n00bs on the list, I think it would be fun to post some of the questions and see how they do. I don’t have the answers laying around, so we’ll probably need to get some participation from the old farts who are lurking (you know who you are).   So, for the first question (5 points):   What is the original DNS name of the oldest living Active Directory domain? (This was as of 2011. I’m pretty sure it’s still alive)   -gil        

Order By: Standard | Newest | Votes
ZJORZ posted this 10 October 2015

Easy one! J Dn: DC=redmond,DC=corp,DC=microsoft,DC=com

show

gkirkpatrick posted this 10 October 2015

Come on Jorge, you have to let the new kids try a few times. You know, maybe give some hints like “It’s a Microsoft domain…”  J

 

But you are correct. 5 points to the beer-drinking, motorcycle-riding father of 2 from Veenendaal.

 

-gil

 

 

 

show

chriss3 posted this 10 October 2015

Hmm wouldn’t “corp.microsoft.com” be older? As it is the forest root domain within that forest, meaning it should have been created before Redmond? ;) technically when Redmond was NT4 it wasn’t a AD domain, nor did it had a DNS name :P Enfo ZipperChristoffer Andersson – Principal Advisor

show

gkirkpatrick posted this 10 October 2015

Is CORP the forest root? I didn’t know that….

 

show

esf posted this 12 October 2015

I don’t know and can’t check anymore, but I always assumed ntdev was older.

 

~E

 

show

esf posted this 12 October 2015

Offline I confirmed that ntdev is likely older than Redmond but honestly might not even be the oldest. There are a couple of prod domains I think are older, but a very early days internal only event makes their

exact date hard to figure out anymore…they all show the same date now as an artifact of this event. So which of these few older ones is actually the oldest is sadly not able to be ascertained with data that I can recall anymore. I will ask a few old timers

who are around what they recall when I see them next.

 

That said, I believe it is one of these few that is the oldest and predates Redmond. If forced to guess I’d guess ntdev.

 

~E

Bursting Bubbles since 2002

 

 

show

Tony posted this 12 October 2015

Good background info Eric!

 

For anyone out there that wants to check the age of their forest, here's some Powershell

 

Get-ADObject -SearchBase (Get-ADForest).PartitionsContainer <br><br /><br />-LDAPFilter &quot;(&amp;(objectClass=crossRef)(systemFlags=3))&quot;


-pr dnsRoot, nETBIOSName, whenCreated | Sort whenCreated <br><br /><br />| select @{e={($_.DNSRoot)};l=”DomainFQDN”},


nETBIOSName, @{e={(get-date $_.whencreated -format dd/MM/yyyy)};l=”whenCreated”} `


| ft -AutoSize




Tony








show

gkirkpatrick posted this 12 October 2015

>>

Bursting Bubbles since 2002

 

Hah!

 

show

Douglast posted this 12 October 2015











That’s sort of like “Making Users cry since 2002”.

 

show

gkirkpatrick posted this 13 October 2015

There is an IAM Law that goes something like this:



 

"If there's a problem with your federated trust, it's PKI. If it's not PKI it’s a typo. If it’s not a typo,

its PKI". Who's law is this?

 

-gil

 

 

show

ZJORZ posted this 13 October 2015

She a hunter…. :-) Met vriendelijke groeten / Kind regards, Jorge de Almeida Pinto: JorgeDeAlmeidaPinto@xxxxxxxxxxxxxxxx(: +31 (0)6 26.26.62.80 Description: Description: Description: Description: Think Green 

show

ThomasVuylsteke posted this 13 October 2015

Laura ofcourse J Aka @adfskitteh

 

show

gkirkpatrick posted this 13 October 2015

10 points split evenly between Jorge and Thomas! The correct answer is of course Laura Hunter, formerly of MS IT, and now I believe a feature PM for Visual Studio.

 

-gil

 

show

barkills posted this 13 October 2015

More laws from Laura:

 

Immutable Laws of MFA:

 

1. the user must always expect the challenge

2. multiple requests all in a row == bad

3. think carefully about using MFA as primary vs step-up mechanism (see #1)

 

J

 

show

gkirkpatrick posted this 13 October 2015

5 extra credit points to Mr. Arkills!

 

-g

 

show

neil.ruston posted this 05 November 2015

I'm aware of at least one AD which I think is older but not sure the organisation would want to admit that their production AD is based on beta code which was upgraded and never decommissioned!

 

neil



 



 

show

Close