{"id":19452,"date":"2023-07-17T15:43:48","date_gmt":"2023-07-17T19:43:48","guid":{"rendered":"https:\/\/kevinjustin.com\/blog\/?p=19452"},"modified":"2024-09-10T13:42:46","modified_gmt":"2024-09-10T17:42:46","slug":"scom-webconsole-settings-for-kerberos-ad-delegation","status":"publish","type":"post","link":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/","title":{"rendered":"SCOM WebConsole settings for Kerberos AD Delegation"},"content":{"rendered":"
\"Kerberos<\/a>
I attribute Kerberos AD delegation as the Navajo and Comanche helped allies in WW2, encrypted and encoded communication<\/figcaption><\/figure>\n

 <\/p>\n

Next on the list is to setup SCOM WebConsole settings for Kerberos AD Delegation.\u00a0 I attribute Kerberos AD delegation as the Navajo and Comanche helped allies in WW2, encrypted and encoded communication.\u00a0 Time to make the donuts! (to setup SCOM WebConsole settings for Kerberos AD Delegation)<\/p>\n

 <\/p>\n

 <\/p>\n

If you’re improperly setup – you’ll flag on STIG configs V-243470, V-243478<\/p>\n

 <\/p>\n

Documentation<\/strong><\/h1>\n

https:\/\/www.sentinelone.com\/blog\/detecting-unconstrained-delegation-exposure<\/a><\/p>\n

https:\/\/pentestlab.blog\/2022\/03\/21\/unconstrained-delegation\/<\/a><\/p>\n

 <\/p>\n

 <\/p>\n

Outline<\/strong><\/h1>\n

Assess affected unconstrained delegation servers in environment<\/p>\n

Configure delegation on SCOM and\/or PowerBI servers<\/p>\n

 <\/p>\n

 <\/p>\n

 <\/p>\n

Assess affected unconstrained delegation servers in environment<\/strong><\/h1>\n

From a computer, with ADUC, and RSAT feature installed, search for relevant account(s) used (Read Only RO access displayed below).<\/p>\n

\"ADUC<\/a>
ADUC SCOM account examples<\/figcaption><\/figure>\n

 <\/p>\n

 <\/p>\n

Alternatively, from PowerShell > run this command to see affected servers (much wider list, unless you add a where clause)<\/p>\n

Get-ADComputer -LDAPFilter<\/span><\/p>\n

“(userAccountControl:1.2.840.113556.1.4.803:=524288)”<\/span><\/p>\n

 <\/p>\n

 <\/p>\n

 <\/p>\n

Configure delegation on SCOM and\/or PowerBI servers<\/strong><\/h1>\n

Take the list of affected servers, to take action.\u00a0 Use the steps below to configure relevant SCOM or PowerBI servers.<\/p>\n

 <\/p>\n

Configure SCOM Web Console server<\/strong>
\nWith domain administrator (DA or Tier0) rights, open the Active Directory Users and Computers MMC snap-in.<\/p>\n

 <\/p>\n

From ADUC > change ‘Find’ drop-down to Computers<\/p>\n

In the Computer name text box, enter <SCOMWebConsoleServerName>\u00a0 and\u00a0 click search<\/p>\n

Right click the server in the results box > Select Properties.<\/p>\n

Select the Delegation tab.<\/p>\n

Select Trust this computer for delegation to specified services only > Use any authentication protocol.<\/p>\n

Under Services to which this account can present delegated credentials, select Add.<\/p>\n

In the new dialog box, select Users or Computers.<\/p>\n

Enter <SCOMWebConsoleServerName>, and then select OK.<\/p>\n

Click the Add button to add services<\/p>\n

Select the w3sv<\/strong>c and www<\/strong> processes<\/p>\n

Select OK.<\/p>\n

\"ADUC<\/a><\/p>\n

ADUC SCOM Lab server choosing process<\/p>\n

 <\/p>\n

 <\/p>\n

Verification of delegation settings<\/strong><\/h2>\n
\"ADUC<\/a>
ADUC Delegation flags with SCOM MS processes selected.<\/figcaption><\/figure>\n

 <\/p>\n

Depending on replication times for the forest, wait and later reboot <SCOMWebConsoleServerName> to have settings take effect.<\/p>\n

 <\/p>\n

 <\/p>\n

PowerBI Report Server<\/strong><\/h1>\n

With domain administrator (DA or Tier0) rights, open the (ADUC) Active Directory Users and Computers MMC snap-in.\u00a0 NOTE: RSAT tools recommended to be installed on SCOM Management Server(s)<\/strong><\/span><\/p>\n

In the Search text box, enter PowerBI service account <Example can be SCOMDataAccessReader Account> and click search<\/p>\n

Right-click the PowerBI service account <Example can be SCOMDataAccessReader Account>,\u00a0 select Properties.<\/p>\n

Select the Delegation tab.<\/p>\n

Select Trust this computer for delegation to specified services only > Use any authentication protocol.<\/p>\n

Under Services to which this account can present delegated credentials, select Add.<\/p>\n

In the new dialog box, select Users or Computers.<\/p>\n

Enter the service account for the data source, and then select OK.<\/p>\n

Select the SPN that you created for <PowerBI Report Server Name><\/p>\n

Select both as FQDN and the NetBIOS names are in the SPN<\/p>\n

Select OK.<\/p>\n

 <\/p>\n

Back to ADUC (AD Users and Computers), change Find drop-down to Computers<\/p>\n

Enter <PowerBI Report Server Name>, and click search<\/p>\n

Right click the server in the results box > Select Properties.<\/p>\n

Select the Delegation tab.<\/p>\n

Select Trust this computer for delegation to specified services only > Use any authentication protocol.<\/p>\n

Under Services to which this account can present delegated credentials, select Add.<\/p>\n

In the new dialog box, select Users or Computers.<\/p>\n

Enter <Example can be SCOMDataAccessReader Account>, and then select OK.<\/p>\n

Click the Add button to add services<\/p>\n

Select the HTTP process<\/p>\n

\"\"<\/a>
ADUC Delegation Add Services > HTTP, WWW<\/figcaption><\/figure>\n

Select OK.<\/p>\n

<\/div>\n
\"ADUC<\/a>
ADUC Delegation Settings for http for PowerBI Report Server (PBIRS)<\/figcaption><\/figure>\n","protected":false},"excerpt":{"rendered":"

  Next on the list is to setup SCOM WebConsole settings for Kerberos AD Delegation.\u00a0 I attribute Kerberos AD delegation as the Navajo and Comanche helped allies in WW2, encrypted and encoded communication.\u00a0 Time to make the donuts! (to setup SCOM WebConsole settings for Kerberos AD Delegation)     If you’re improperly setup – you’ll … Continue reading “SCOM WebConsole settings for Kerberos AD Delegation”<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[637,2,5,636,530],"tags":[20,631,26,639,640,642,641,611,635,600,287,342,633,638,536,537],"class_list":["post-19452","post","type-post","status-publish","format-standard","hentry","category-active-directory","category-administration","category-best-practice","category-iis","category-scom","tag-active-directory","tag-ad-delegation","tag-adds","tag-aduc","tag-cac","tag-client-certificate","tag-common-access-card","tag-iis","tag-iismanager","tag-kerberos","tag-operations-manager","tag-scom","tag-smart-card","tag-web","tag-web-console","tag-webconsole"],"yoast_head":"\nSCOM WebConsole settings for Kerberos AD Delegation - Kevin Justin's Blog<\/title>\n<meta name=\"description\" content=\"This blog post is a 'how to' setup SCOM WebConsole settings for Kerberos AD Delegation for secure authentications\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"SCOM WebConsole settings for Kerberos AD Delegation - Kevin Justin's Blog\" \/>\n<meta property=\"og:description\" content=\"This blog post is a 'how to' setup SCOM WebConsole settings for Kerberos AD Delegation for secure authentications\" \/>\n<meta property=\"og:url\" content=\"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/\" \/>\n<meta property=\"og:site_name\" content=\"Kevin Justin's Blog\" \/>\n<meta property=\"article:published_time\" content=\"2023-07-17T19:43:48+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-09-10T17:42:46+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/kevinjustin.com\/blog\/wp-content\/uploads\/2023\/07\/Kerberos-Code-Talkers.jpg\" \/>\n<meta name=\"author\" content=\"WordPress Administrator\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"WordPress Administrator\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/\"},\"author\":{\"name\":\"WordPress Administrator\",\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/#\\\/schema\\\/person\\\/3d7a90f4430bef43134eaa0a7e2cd508\"},\"headline\":\"SCOM WebConsole settings for Kerberos AD Delegation\",\"datePublished\":\"2023-07-17T19:43:48+00:00\",\"dateModified\":\"2024-09-10T17:42:46+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/\"},\"wordCount\":665,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/07\\\/Kerberos-Code-Talkers.jpg\",\"keywords\":[\"Active Directory\",\"AD Delegation\",\"ADDS\",\"ADUC\",\"CAC\",\"Client Certificate\",\"Common Access Card\",\"IIS\",\"iisManager\",\"kerberos\",\"operations manager\",\"SCOM\",\"smart card\",\"Web\",\"web console\",\"webconsole\"],\"articleSection\":[\"Active Directory\",\"Administration\",\"Best Practice\",\"IIS\",\"SCOM\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/\",\"url\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/\",\"name\":\"SCOM WebConsole settings for Kerberos AD Delegation - Kevin Justin's Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/07\\\/Kerberos-Code-Talkers.jpg\",\"datePublished\":\"2023-07-17T19:43:48+00:00\",\"dateModified\":\"2024-09-10T17:42:46+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/#\\\/schema\\\/person\\\/3d7a90f4430bef43134eaa0a7e2cd508\"},\"description\":\"This blog post is a 'how to' setup SCOM WebConsole settings for Kerberos AD Delegation for secure authentications\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/#primaryimage\",\"url\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/07\\\/Kerberos-Code-Talkers.jpg\",\"contentUrl\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/07\\\/Kerberos-Code-Talkers.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/2023\\\/07\\\/17\\\/scom-webconsole-settings-for-kerberos-ad-delegation\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"SCOM WebConsole settings for Kerberos AD Delegation\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/\",\"name\":\"Kevin Justin's Blog\",\"description\":\"Operational monitoring tools including System Center, Azure Monitor\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/#\\\/schema\\\/person\\\/3d7a90f4430bef43134eaa0a7e2cd508\",\"name\":\"WordPress Administrator\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/fca865cc5df90a25ae9533b1d9dea567a78c7469dc3202a376c8d117a0eaea11?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/fca865cc5df90a25ae9533b1d9dea567a78c7469dc3202a376c8d117a0eaea11?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/fca865cc5df90a25ae9533b1d9dea567a78c7469dc3202a376c8d117a0eaea11?s=96&d=mm&r=g\",\"caption\":\"WordPress Administrator\"},\"sameAs\":[\"https:\\\/\\\/kevinjustin.com\"],\"url\":\"https:\\\/\\\/kevinjustin.com\\\/blog\\\/author\\\/wordpress_admin\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"SCOM WebConsole settings for Kerberos AD Delegation - Kevin Justin's Blog","description":"This blog post is a 'how to' setup SCOM WebConsole settings for Kerberos AD Delegation for secure authentications","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/","og_locale":"en_US","og_type":"article","og_title":"SCOM WebConsole settings for Kerberos AD Delegation - Kevin Justin's Blog","og_description":"This blog post is a 'how to' setup SCOM WebConsole settings for Kerberos AD Delegation for secure authentications","og_url":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/","og_site_name":"Kevin Justin's Blog","article_published_time":"2023-07-17T19:43:48+00:00","article_modified_time":"2024-09-10T17:42:46+00:00","og_image":[{"url":"https:\/\/kevinjustin.com\/blog\/wp-content\/uploads\/2023\/07\/Kerberos-Code-Talkers.jpg","type":"","width":"","height":""}],"author":"WordPress Administrator","twitter_card":"summary_large_image","twitter_misc":{"Written by":"WordPress Administrator","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/#article","isPartOf":{"@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/"},"author":{"name":"WordPress Administrator","@id":"https:\/\/kevinjustin.com\/blog\/#\/schema\/person\/3d7a90f4430bef43134eaa0a7e2cd508"},"headline":"SCOM WebConsole settings for Kerberos AD Delegation","datePublished":"2023-07-17T19:43:48+00:00","dateModified":"2024-09-10T17:42:46+00:00","mainEntityOfPage":{"@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/"},"wordCount":665,"commentCount":0,"image":{"@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/#primaryimage"},"thumbnailUrl":"https:\/\/kevinjustin.com\/blog\/wp-content\/uploads\/2023\/07\/Kerberos-Code-Talkers.jpg","keywords":["Active Directory","AD Delegation","ADDS","ADUC","CAC","Client Certificate","Common Access Card","IIS","iisManager","kerberos","operations manager","SCOM","smart card","Web","web console","webconsole"],"articleSection":["Active Directory","Administration","Best Practice","IIS","SCOM"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/","url":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/","name":"SCOM WebConsole settings for Kerberos AD Delegation - Kevin Justin's Blog","isPartOf":{"@id":"https:\/\/kevinjustin.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/#primaryimage"},"image":{"@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/#primaryimage"},"thumbnailUrl":"https:\/\/kevinjustin.com\/blog\/wp-content\/uploads\/2023\/07\/Kerberos-Code-Talkers.jpg","datePublished":"2023-07-17T19:43:48+00:00","dateModified":"2024-09-10T17:42:46+00:00","author":{"@id":"https:\/\/kevinjustin.com\/blog\/#\/schema\/person\/3d7a90f4430bef43134eaa0a7e2cd508"},"description":"This blog post is a 'how to' setup SCOM WebConsole settings for Kerberos AD Delegation for secure authentications","breadcrumb":{"@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/#primaryimage","url":"https:\/\/kevinjustin.com\/blog\/wp-content\/uploads\/2023\/07\/Kerberos-Code-Talkers.jpg","contentUrl":"https:\/\/kevinjustin.com\/blog\/wp-content\/uploads\/2023\/07\/Kerberos-Code-Talkers.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/kevinjustin.com\/blog\/2023\/07\/17\/scom-webconsole-settings-for-kerberos-ad-delegation\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/kevinjustin.com\/blog\/"},{"@type":"ListItem","position":2,"name":"SCOM WebConsole settings for Kerberos AD Delegation"}]},{"@type":"WebSite","@id":"https:\/\/kevinjustin.com\/blog\/#website","url":"https:\/\/kevinjustin.com\/blog\/","name":"Kevin Justin's Blog","description":"Operational monitoring tools including System Center, Azure Monitor","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/kevinjustin.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/kevinjustin.com\/blog\/#\/schema\/person\/3d7a90f4430bef43134eaa0a7e2cd508","name":"WordPress Administrator","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/fca865cc5df90a25ae9533b1d9dea567a78c7469dc3202a376c8d117a0eaea11?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/fca865cc5df90a25ae9533b1d9dea567a78c7469dc3202a376c8d117a0eaea11?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/fca865cc5df90a25ae9533b1d9dea567a78c7469dc3202a376c8d117a0eaea11?s=96&d=mm&r=g","caption":"WordPress Administrator"},"sameAs":["https:\/\/kevinjustin.com"],"url":"https:\/\/kevinjustin.com\/blog\/author\/wordpress_admin\/"}]}},"_links":{"self":[{"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/posts\/19452","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/comments?post=19452"}],"version-history":[{"count":12,"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/posts\/19452\/revisions"}],"predecessor-version":[{"id":20443,"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/posts\/19452\/revisions\/20443"}],"wp:attachment":[{"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/media?parent=19452"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/categories?post=19452"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kevinjustin.com\/blog\/wp-json\/wp\/v2\/tags?post=19452"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}