Category Archives: Versions

NetTools v1.12.0

Server Info **New**
Displays the info from NetServerGetInfo with 100, 101 and 102 information structures

Group Members **New **
Displays the members of a group and the members of all nested groups in the target group

Base64 **New**
Ability to convert text, GUID and hex to Base64 and via versa

LDAP Search
New Decodes for – LCS 2003, OCS2005, Lync 2010 (including: msrtcsip-archivingenabled, msrtcsip-archivingserverversion, msrtcsip-enablefederation, msrtcsip-meetingflags, msrtcsip-optionflags, msrtcsip-poolfunctionality, msrtcsip-pooltype, msrtcsip-poolversion, msrtcsip-serverversion, msrtcsip-sourceobjecttype, msrtcsip-trustedserverversion, msrtcsip-ucflags, msrtcsip-archivedefaultflags),
New Decodes for – trustdirection, domainFunctionality, forestFunctionality, trustattributes, trusttype, msds-TrustForestTrustInfo
New Decodes for – caCertificate, mspkidefaultkeyspec, mspki-enrollment-flag, flags, mspki-certificate-name-flag, mspki-private-key-flag, pkikeyusage, pKIExpirationPeriod, pKIOverlapPeriod
New Decoders – FILETIME, TrustForestInfo, and Certificate renewal period attributes
Certificate decoder updated to include start and end date
Inline filter substitution for Generalized Time Format (GTF) and 64bit Time i.e. (whencreated={zdate:30/12/2011}) or (lastlogontimestamp={idate:31/12/2011 })
“Now” constant can be used with zdate\idate inline filter substitutions, with optional plus and minus days.  i.e. {zdate:now}, {zdate:now-365}, {idate:now+5}
Fixed column sort bug in table view
Fixed ‘1.1’ attribute column bug in table view
Fixed display issue when displaying  ;binary attributes
Added Object Properties dialog option to context menus
Object Properties dialog – Added meta data view option
Attribute dialog – added Schema definition option to context menu
Updated context menus to be enabled based on selection
Added extra error handling for attributes with odd values!
Fixed continuous loop bug for attributes that returns no values

LDAP Browser
Added user definable columns
Fixed binary view
Fixed performance issue introduced on 1.11

Schema Class Browser
Added Inherited classes option – selects if inherited classes are displayed
Double click option on attributes to follow classes
Added WhenCreated column
Added Column sorts
Added Copy and Attribute options
Icons for different class types

Last Logon
Added domain suffix option to allow searches in different forests\domains

User Details
Changed query to a paged search so return count is not limited by the MaxPagedSize
Ability to select naming context if RootDSE doesn’t have DefaultNamingContext set i.e. ADAM\DS LDS
Added save option to the server inputbox

LDAP Performance
Fixed the bug in the averaging results
Added screen refresh to support tests cycles over 50 tests

AD Attributes dialog
Added right click option to display enumerate values

Nettools+.ini
Updated the add configuration file logic to only add options that don’t already exist in the current configuration file.  Sample configuration file included the zip covering the different configuration file options.
Configuration file with sample LDAP queries
FSMO roles – PDC, Domain, Infrastructure, RID, Schema
Schema Versions – AD, Exchange, OCS
Users - active, inactive and disabled
AD details, trusts, rootdse, tombstone, sites, GC, IP subnets

General
Added Ctrl+A select all options and key shortcuts for copying to all tables and lists
Full list of supported dynamic override decode in the configuration file (nettools.ini):
[AttributeDecodes]
<attributename>=<DecodeType>

DecodeType list:

DEFAULT – ASCII
GTFTIME – Generalized Time Format
FILETIME – Win32 FileTime Format
64TIME – Win32 64bit Time Format
GUID – Windows GUID
SID – Security Identifier
ATTRIBENUM – predefined enumerate
SD – Security Descriptor
BINARY – Binary list
DNSRECORD – DNS entries
BEROID - Basic Encoding Rules (BER) Organization Identifier
DNSPROPERTY – DNS Properties entries
CERT - Certificates
PWDSEC – Password secounds
MSTRUST – Decoder for msds-TrustForestTrustInfo
PERIOD – Certificate renewal period

Know Issues
Bulk SID history – compatibility issues with the link library means that it only works on Windows 7, trying to find a solution for XP that doesn’t require two separate versions.

NetTools v1.11.0

SPN - Rewrite of the SPN search feature to use the Global Catalog, now uses LDAP API set instead of ADSI APIs for increased performance.
Kerberos Tickets – added feature to request a ticket for a registered SPN.  Can be used to test that the AD is configured correctly for a given SPN
Schema Class Browser – Option to view AD properties of the Attributes
LDAP Search
New LDAP Session options feature to allow complete control over the LDAP session, and display return Session options from a search
New decodes for – dnsrecord, dnsproperty, omobjectclass, msDS-MaximumPasswordAge, msDS-MinimumPasswordAge, msDS-LockoutObservationWindow, msDS-LockoutDuration, userCertificate, userSMIMECertificate, attributeCertificateAttribute for certificates it displays the subject name, or SAN, or UPN whichever is set
Dynamic Attributes updated to use a new Hashing algorithm for improved performance on attribute lookups
Improved reporting for LDAP Referrals
Improved support for non MS LDAP servers
Display multiple attributes one per line
Inline filter substitution for guid, sid and oid i.e. (omobjectclass={oid:1.3.12.2.1011.28.0.702}) or (objectisd={sid: S-1-5-21-3499964120-3315823391-1593708255-164234}) or (objectguid={guid:00AD5B16-8E22-49D5-B83A-BFDEA6DFF7DE})
Object Properties
Updated to report User Account Control settings
New members of and member list with more detail, with load on demand to improve display times
SPN and delegation details
Support for computer objects
User Rights – updated to display user privileges