Windows Admin Center (WAC) - lpcyber1/SEC440 GitHub Wiki

VM Setup

AD01

  • Initially DNS server will be 10.0.5.2 but after forest is created set it to 10.0.5.5

image

FS01

  • Used sconfig to set these and join domain

image

WKS1

image

DNS/ADDS Setup

  • Added ADDS and DNS server features in Server Manager to AD01 along with the management tools needed.

image

  • Promoted AD01 to a Domain Controller and created a new forest with the lookup name liam.local

image

  • Created a domain admin and a standard domain user account as well in Active Directory Users and Computers

DHCP Setup

  • Added DHCP server features and managing tools to AD01 in Server Manager. Created a scope for my LAN (10.0.5.0/24) between .150 - .200
  • Scope options

image

Installing and Setting up Windows Admin Center on FS01

  • From WKS1 I browsed to the download page and downloaded the MSI for WAC. I used scp to send it over to FS01.

image

image

  • Ran the installer

image

image

  • Browsed to it in WKS1. It prompts for a sign-in from the browser as well. So I signed in as my Domain Admin

image

image

Deliverables Setup

  • For deliverable 2 I browsed to the extensions tab in WAC on WKS1 and added the DNS and Active Directory extensions in settings.

image

  • For deliverable 4 I went into AD01 and made a new group policy rule setting the following:

image

image

image

  • Then ran gpudate /force and winrm quickconfig on WKS1

  • To set up RDP for WKS1 I allowed it in the WAC settings and

image

Deliverables

  • Deliverable 1. Screenshot similar to the one below, showing three of your windows systems.

image

  • Deliverable 2. Figure out how to add functionality to WAC that will allow us to manage AD and DNS Provide screenshots similar to the two below.

image

image

  • Deliverable 3. Figure out how to invoke a remote powershell session with AD01 (MGMT01 in screenshot)

image

  • Deliverable 4: Figure out how to deal with this error for wks1 and demonstrate your success by using the Remote Desktop Feature within WAC.

image

  • Deliverable 5. Tech Journal. Provide a link to the technical documentation required to complete this lab. Depending on how you do this, this could really be just 2-3 commands on fs01 and 2-3 commands on your workstation. No reflection is required on this lab however you should think about the implications of WAC versus traditional remote administration. Is it more secure or just more convenient? I think WAC can be very useful but at the same time you are opening up more ports and services like WinRM to be exploited by threat actors for a more convenient experience.