Category: Windows Page 1 of 24

Schannel Follow-up

Hello all! Nathan Penn back again with a follow-up to Demystifying Schannel. While finishing up the original post, I realized that having a simpler method to disable the various components of Schannel might be warranted. If you remember that …

Faster Application Deployment in Azure AD Application Proxy

Howdy folks,

Im excited to announce you can now use PowerShell to manage deployment of your Azure AD Application Proxy. This will allow you to deploy your on-premises applications more quickly and manage them more easily. For example, we know …

Update 1802 for Configuration Manager Technical Preview Branch – Available Now!

Hello everyone! We are excited to let you know that update 1802 for the Technical Preview Branch of System Center Configuration Manager has been released. Technical Preview Branch releases give you an opportunity to try out new Configuration Manager features …

Retire Those Old Legacy Protocols

Hello Paul Bergson back again, and I wanted to bring up another security topic. There has been a lot of work by enterprises to protect their infrastructure with patching and server hardening, but one area that is often overlooked when …

EMS news roundup: January 2018

Heres a quick recap of news and announcements for EMS last month:

Why its important to integrate your VPN with Microsoft Advanced Threat Analytics

Attackers use existing credentials to remotely connect to corporate networks. Integrate your VPN with Microsoft ATA …

Decentralized Digital Identities and Blockchain – The Future as We See It.

Howdy folks,

I hope you’ll find today’s post as interesting as I do. It’s a bit of brain candy and outlines an exciting vision for the future of digital identities.

Over the last 12 months we’ve invested in incubating a …

New SCOM Web Console – Blog series (Post 5/5): Sample Custom Dashboard walkthrough

About

SCOM 1801 marks the release of REST APIs for SCOM SDK. Using these APIs a user can create any custom client application of their own. This blog aims at walking the user through a scenario where a complete standalone …

New SCOM Web Console – Blog series (Post 4/5): The all new Drilldown experience

About

This blog aims at introducing the all new drilldown experience added as part of the new dashboard with SCOM 1801 release.  For details on implementation and other parameters please refer to the
After going through this blog a user …

New SCOM Web Console – Blog series (Post 3/5): The new HTML5 Widgets

About

This blog aims at introducing the all new HTML5 based widgets added as part of the new dashboards with  . For details on implementation and other parameters please refer to the detailed documentation.
After going through this blog …

New SCOM Web Console – Blog series (Post#2): The all new Dashboards

About

This blog aims at introducing the all new HTML5 based dashboard functionality added to SCOM 1801 release. For details on implementation and other parameters please refer to the detailed documentation.
After going through this blog, a user would:…

New SCOM Web Console – Blog series (Post#1)

About 

This series of blogs intends to introduce the new SCOM Web Console released in System Center Operations Manager 1801. For details on implementation and other parameters please refer to the detailed documentation. This blog is designed

Cloud App Security Threat Protection just got better

As we have conversations with Security Operations (SecOps) teams, were seeing a notable shift in the approach to threat detection and protection: moving from a technology-driven, product-focused approach to a use-case driven approach. These teams define their pain points carefully …

The Future is on the Other Side of this Bridge

With the 1710 update to ConfigMgr and the 1709 update to Windows 10, weve provided the foundations of our solution to bridge Windows modernization through Co-Management. This bridge is an entry-point for our customers to start their transitions to …

6 steps to building a holistic security strategy

Today’s business and IT leaders have quite a balancing act on their hands when it comes to security. Between managing a wide universe of devices and applications, the need for innovation and agility, and an ever-evolving landscape of threats, companies …

Simplified Application Management using Wildcards in Azure AD Application Proxy

Howdy folks,

Today I get to tell you about a cool new capability that improves the management experience for Azure AD Application Proxy. Now you can use wildcards(*) to publish many applications at once. Wildcards also let you apply the …

Update and Recommendation feature supports Management Packs from SCOM Management Pack partners!

Update and Recommendation feature was introduced in SCOM 2016  for Microsoft owned Management Packs  . This feature was introduced to alleviate the challenges involved in discovering the appropriate Management Packs for various workloads running in the customer’s environment from different websites …

Monthly antimalware platform updates for Windows Defender

Beginning with December 2017, Microsoft is releasing antimalware platform updates for Windows Defender each month. The platform updates will be published as follows: category: Definition Updates, product: Windows Defender. If you use a Configuration Manager automatic deployment rule …

Quick Reference: Recovery Options for Post-Mortem Debugging for Windows and Virtual Machines

Hi everyone, Robert Smith here to talk to you today a bit about crash dump configurations and options. With the wide-spread adoption of virtualization, large database servers, and other systems that may have a large amount or RAM, pre-configuring the …

Lots of News about Azure AD B2C feature updates!

Howdy folks,

Today Im excited to let you know about a passel of new features weve just turned on our Azure AD B2C service! These features give you a ton of new options for customizing your Azure AD B2C end …

Microsoft 365: A complete, secure solution that brings together Office 365 and EMS

In this era of digital transformation, companies are reimagining how technology can help their people collaborate, communicate, and innovate more effectively. Through specific solutions, using IT resources differently, and optimizing processes, companies can achieve the essential flexibility and efficiency to …

Highlights from the GA of the Intune APIs in Microsoft Graph

On Wednesday we announced that the Microsoft Intune APIs being surfaced through Microsoft Graph have been moved from preview to Generally Available.

We are really excited about this milestone, and we look forward to learning how to make it even …

Print to corporate printers from Azure AD joined Windows 10 devices!

Howdy folks,

Every day we hear from more and more enterprise customers who are eager to go cloud only managing their Windows 10 laptops. Unfortunately, one thing has been standing in their way -up until now, there has never been

Public preview: “What If” tool for Azure AD Conditional Access policies

Hi folks,

Azure AD Conditional Access (CA) has really taken off. Organizations around the world are using it to ensure secure, compliant access to applications. Every month, Conditional Access is now used to protect over 10K organizations and over 10M …

Intune APIs in Microsoft Graph – Now generally available

With tens of thousands of enterprise mobility customers, we see a great diversity in how organizations structure their IT resources. Some choose to manage their mobility solutions internally while others choose to work with a managed service provider to manage …

Microsoft Cloud App Security integrates with third party Data Loss Prevention solutions

This post is authored by Arbel Zinger and Alon Yardeni, Program Managers, Microsoft Cloud App Security.

Today we would like to explain how Microsoft Cloud App Security integrates with third party Data Loss Prevention (DLP) solutions – Symantec Data Loss …

ADFS: Monitoring a Relying Party for Certificate Changes

Howdy folks!

Michele Ferrari here from the Premier Field Engineer-Identity Team in San Francisco, here today to talk about ADFS Monitoring settings for Claims Provider Trust and Relying Party Trust.

This is the question we’re going to answer today as

Desired State Configuration (DSC) Planning Update – January 2018

In September 2017 we communicated some of our plans for PowerShell Desired State Configuration (DSC). Over the past few months, we have been executing on these plans and collecting feedback from customers and partners. The intent of this blog is …

ConfigMgr Current Branch – Express Updates Video Tutorial

Previous posts in this series have referenced the update approach to delivering Windows updates that was introduced first with Windows 10. One side effect of the cumulative update approach is that the single update released is larger than the individual

PowerShell Core 6.1 Roadmap

The release of PowerShell Core 6.0 is only the beginning and we are already thinking about the next leg of our journey.

Most of the effort of the team with PowerShell Core 6.0 was in these areas:

  • Learning

Protected: Announcing: Transport Features and Performance Advancements in Fall Creators Update for Windows 10 and Windows Server 2016

This content is password protected. To view it please enter your password below:

Looking at the Hyper-V Event Log (January 2018 edition)

Hyper-V has changed over the last few years and so has our event log structure. With that in mind, here is an update of Ben’s original post in 2009 (“Looking at the Hyper-V Event Log”).

This post gives a short …

Now available: Faster, simpler sign-in experiences for Azure AD-connected apps

Howdy folks,

Today, Im happy to announce that weve made it faster and easier for your users to sign into all their Azure AD-connected applications. The My Apps portal is a convenient one-stop place for users to discover and launch …

ConfigMgr Current Branch – Windows Update for Business Video Tutorial

Ensuring software updates are applied across an organization is a key focus area for system administrators. Configuration Manager has been used by thousands of organizations for years to aid in this pursuit.  Other organizations have opted to use standalone WSUS for

A smaller Windows Server Core Container with better Application Compatibility

In Windows Server Insider Preview Build 17074 released on Tuesday Jan 16, 2018, there are some exciting improvements to Windows Server containers that we’d like to share with you.  We’d love for you to test out the build, especially the …

Update 1801 for Configuration Manger Technical Preview is released

We are happy to let you know that update 1801 for the Technical Preview Branch of System Center Configuration Manager has been released. Technical Preview Branch releases give you an opportunity to try out new Configuration Manager features in a

Update 1801 for Configuration Manager Technical Preview Branch – Available Now!

Hello everyone and happy 2018 from our Configuration Manager family! We have a lot of exciting features coming this year. To start, we are excited to let you know that update 1801 for the Technical Preview Branch of System Center …

Infrastructure + Security: Noteworthy News (January, 2018)

Hello there! Stanislav Belov here to bring you the next issue of the Infrastructure + Security: Noteworthy News series!  

As a reminder, the Noteworthy News series covers various areas, to include interesting news, announcements, links, tips and tricks from Windows, …

New Updates to Intune for Education Simplifies Delegation, Adds Windows Controls, and Improves Insights

Over the last 20+ years, Ive met with hundreds of schools and school districts around the world and I am always amazed at how hard these IT administrators work to enable their students to learn. My brother-in-law is an IT …

Update Rollup for Configuration Manager Current Branch 1710 is now available

An update rollup for System Center Configuration Manager current branch, version 1710, is now available. This update is available for installation in the Updates and Servicing node of the Configuration Manager console. Please note that if the Service Connection …

ConfigMgr Current Branch – Software Update Delivery Video Tutorial

The release of Windows 10 brought with it a change in the way updates are released – updates are now cumulative.  Since the release of Windows 10 this same cumulative update approach has been adopted for the remainder of

Watch: The Endpoint Zone with Brad Anderson [1801]

The Endpoint Zone with Brad Anderson is a great (and fun!) way to get a deep dive into what’s happening right now in enterprise mobility and modern workplace. Brad Anderson (CVP, Enterprise Mobility Management) and Simon May (Principal Program Manager) …

Survey: Local Users and Groups on Windows Server in AD domains

Hey folks, Ned here again. We need to understand how or if you still use local security principals on Windows Server in Active Directory environments. Come take a 60 second survey:

https://aka.ms/LocalSecurity1

 

Ned “this survey is weird, right?” Pyle…

Software Update Video Tutorial Series

I’m pleased to announce that over the next few days, Steven Rachui, a Principal Premier Field Engineer focused on manageability technologies will be sharing a video tutorial series here about software updates.  His topics will be:

  • ConfigMgr Current Branch

Single Host Shielded VMs Lab/PoC

Hi, Matthew Walker again. Virtualization and High Availability PFE. Recently I worked with a few of my co-workers to present a lab on building out Shielded VMs and I thought this would be useful for those of you out there …

PowerShell Core 6.0: Generally Available (GA) and Supported!

PowerShell Core 6.0 is a new edition of PowerShell that is cross-platform (Windows, macOS, and Linux), open-source, and built for heterogeneous environments and the hybrid cloud.

First and foremost, thank you to all of our amazing community, especially our open-source

How to Switch a Failover Cluster to a New Domain

In this blog I will describe some new capabilities in Windows Server, version 1709 that enables changing a deployed Failover Cluster from one domain to another.

For the last two decades, changing the domain membership of a Failover Cluster has …

Additional guidance to mitigate speculative execution side-channel vulnerabilities

We are aware of a new publicly disclosed class of vulnerabilities that are referred to as speculative execution side-channel attacks as detailed in Microsoft Security advisory ADV180002. These vulnerabilities affect many modern processors and operating systems, including chipsets from

Azure Automation: Shutting Down Custom Tagged Virtual Machines

Hello everyone! Christopher Scott, Premier Field Engineer. I have recently transitioned into an automation role and like most people my first thought was to setup a scheduled task to shutdown and startup Virtual Machines (VMs) to drive down consumption costs.

Work Folders on-demand file access feature for Windows 10

We’re excited to announce the Work Folders on-demand file access feature will be available in the next Windows 10 release (RS4)! The on-demand file access feature enables you to see and access all of your files. You control which files

Shielded VM local mode and HGS mode

With the new capability in Windows 10, version 1709, Windows Client can host shielded VMs while using remote Host Guardian Service (HGS) attestation. This caused some confusion as people stated they have already been running shielded VMs on client. This …

Why it’s important to integrate your VPN with Microsoft Advanced Threat Analytics

A majority of IT teams use Virtual Private Network (VPN) connections as a method to grant remote users access to corporate resources from outside the companys network. A VPN connection provides employees flexibility by allowing them to work on the …

AskPFEPlat Happy New Year Invitation!

HAPPY NEW YEAR’S everyone, and welcome to 2018!

This is Brandon Wilson (Platforms and Active Directory PFE), and with the introduction of the New Year, I wanted to take some time to thank all our outstanding readers we’ve had over …

Moving to a new home…

This is the last blog post that I am going to write as Virtual PC Guy. But do not fear, I am starting a new blog over at american-boffin.com, and all the Virtual PC Guy posts are going to …

Infrastructure + Security: Noteworthy News (December, 2017-Part 2)

Hello there! Stanislav Belov here to bring you the next “End of the Year” issue of the Infrastructure + Security: Noteworthy News series!  

As a reminder, the Noteworthy News series covers various areas, to include interesting news, announcements, links, tips …

Cipher Suite Breakdown

Hi all, my name is Jason McClure and I’m a Platforms PFE with Microsoft. If you read Demystifying Schannel from Nathan Penn, then you may be asking yourself “What do all those letters and numbers mean?”

Often, we deal with …

DSC Resource Kit Release December 2017

We just released the DSC Resource Kit!

This release includes updates to 16 DSC resource modules. In these past 5 weeks, 68 pull requests have been merged and 59 issues have been closed, all thanks to our amazing community!

When to use Intune for Education versus full Intune console for schools

For many schools, regardless of size, device deployment poses significant challenges, as it is during deployment that group policies are set, data is secured, devices are readied, and essential applications are enabled. Historically, this task has taken a disproportionate amount …

Modern Android Management with Microsoft Intune

This post is authored by Chris Baldwin, Principal Program Manager, Microsoft Intune.

Earlier today, Google announced the deprecation and eventual disablement of Device Admin Android management. Device Admin, sometimes referred to as legacy Android management, is the technical term for …

Tar and Curl Come to Windows!

Beginning in Insider Build 17063, we’re introducing two command-line tools to the Windows toolchain: curl and bsdtar. It’s been a long time coming, I know. We’d like to give credit to the folks who’ve created and maintain bsdtar and curl

Windows Server 2016’s Storage Spaces Direct wins CRN Product of the Year

This month Windows Server 2016 and its Storage Spaces Direct technology won Product of the Year from Computer Reseller News for the Software-defined Storage category.

Winners were chosen through a combination of editorial selection and a survey sent to …

Azure Information Protection – the year that was 2017!

Hi everyone, and welcome to the very last blog from me this year! It has been an incredible year, and I wanted to take this opportunity to take a walk down memory lane and see just how far the Information …

Remote Desktop Connection (RDP) – Certificate Warnings

Hello everyone! Tim Beasley, Platforms PFE here again from the gorgeous state of Missouri. Here in the fall, in the Ozark Mountains area the colors of the trees are just amazing! But hey, I’m sure wherever you are it’s nice …

Update 1712 for Configuration Manager Technical Preview Branch – Available Now!

Hello everyone! We are happy to let you know that update 1712 for the Technical Preview Branch of System Center Configuration Manager has been released. Technical Preview Branch releases give you an opportunity to try out new Configuration Manager features …

Using the OpenSSH Beta in Windows 10 Fall Creators Update and Windows Server 1709

I’m thrilled to share that a Beta OpenSSH client and server daemon are available as a Feature-on-Demand in Windows 10 Fall Creators Update and Windows Server 1709. Since our last update blog, we’ve been working hard on a

Survey: Storage Replica “Lite”

Hey folks, Ned here again. Are you interested in a reduced cost but reduced functionality version of Storage Replica? We are too. Come take a 2-minute survey:

https://aka.ms/srlite1

Ned “this survey promises nothing” Pyle…

Microsoft Intune and Jamf Pro: Better Together to Manage and Secure Macs

This post is co-authored by Brad Anderson, Corporate Vice President, Microsoft and Dean Hager, CEO, Jamf.

 

At the Jamf Nation User Conference (JNUC) in October, we talked about how our partnership would provide an automated compliance-based solution for …

PowerShell script to automatically close old alerts in SCOM

The below PowerShell script can be used to automatically close old SCOM alerts. This script looks for active alerts along with the time when alert was created (alert age). If the alert age is greater than the specified number of …

WNV Deep Dive Part 6 – Container Networking: Transparent and L2bridge Networks

By James Kehr, Networking Support Escalation Engineer

The next Container network type on the list is called, transparent. Production Container workloads, outside of swarms and special Azure circumstances, should be using a transparent network. Unless you need to use L2 …

Migrating local VM owner certificates for VMs with vTPM

Whenever I want to replace or reinstall a system which is used to run virtual machines with a virtual trusted platform module (vTPM), I’ve been facing a challenge: For hosts that are not part of a guarded fabric, the …

WNV Deep Dive Part 5 – Container Networking: The default NAT network

By James Kehr, Networking Support Escalation Engineer

There are, as of this writing, five Container network types in Windows: NAT, Transparent, L2bridge, Overlay, and L2tunnel.

https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/container-networking

This part of the article series will cover the NAT network type. Part 6, …

WNV Deep Dive Part 4 – Looking at LBFO and Hyper-V traffic

By James Kehr, Networking Support Escalation Engineer

We’re going to look at the two other basic types of WNV traffic in part 4: LBFO (NIC teaming) and Hyper-V. I’ll be skipping over Hyper-V Network Virtualization and Software Defined Networks. The …

WNV Deep Dive Part 3 – Capturing and Reading Virtualized Network Traffic

By James Kehr, Networking Support Escalation Engineer

There are three primary tools used to capture virtual network traffic in Windows: netsh trace, the PowerShell NetEventPacketCapture module, and Message Analyzer. I won’t focus much on Message Analyzer captures here. Most server …

WNV Deep Dive Part 2 – How WNV works

By James Kehr, Networking Support Escalation Engineer

To understand Windows Network Virtualization (WNV) capture data you first need to understand what you’re looking at. Which is hard when you may not understand what goes on inside of Windows. This article …

Security Updates from the Win10 Fall Creators Update

Hello, Paul Bergson, back with some great new information regarding the recent release of Fall Creators Update (FCU) for Windows 10, Microsoft released some great new security features that can protect you from unwanted Malware.

I have heard from customers …

WNV Deep Dive Part 1 – Introduction to Containers and Windows Network Virtualization

By James Kehr, Networking Support Escalation Engineer

When I started writing this article it was going to be about Container networking, and nothing but Container networking. As the article progresses I realized there was a lot of useful information that …

Windows Container and Virtual Network Deep Dive Mini-Blog Series coming…

Just wanted to give you a quick heads up that we are going to begin a Mini-Blog Series this Monday (12/11).  We will be covering about Container networking, and nothing but Container networking. While there are some differences between Container …

WSL Interoperability with Docker

We frequently get asked about running docker from within the Windows Subsystem for Linux (WSL). We don’t support running the docker daemon directly in WSL. But what you can do is call in to the daemon running under Windows from

Securing modernized apps and simplified networking on Windows with Calico

This blog post was authored by Jason Messer, Principal PM Lead, WDG Core Networking.

Containers have become synonymous with application modernization, and Kubernetes has become the leading solution for orchestrating containerized applications. With Windows Server version 1709, Windows now has …

RDP and PCoIP graphics accelerated virtualization solutions

This blog post is authored by Ivan Mladenov, Senior Program Manager, RDS/WDG.

Once upon a time getting the content of a computer screen and putting it on the network for a remote access was done entirely in software. The CPU …

Prerelease Versioning Added to PowerShellGet and PowerShell Gallery

With the release of PowerShellGet 1.6.0, PowerShellGet cmdlets and the PowerShell Gallery have added support for prerelease strings for prerelease versions of modules and scripts. You can now publish items to the PowerShell Gallery with a version like 1.0.0-alpha,

Webcast: How to leverage Azure for your Windows Server environment

This blog post was authored by Jeff Woolsey, Principal Program Manager, Microsoft.

Hello Windows Server Nation!

I spend a lot of time traveling and talking to customers, and I love to hear about all the innovative ways you use Windows …

Microsoft named a leader in IDC’s MarketScape for Unified Endpoint Management (UEM)

Many organizations are seeing an increasing number of devices, apps and cloud services that are being used by their employees. This creates a need for IT to enable and support new and often more complex scenarios. To be able to …

Storage Spaces Direct with Samsung Z-SSD™

Hello, Claus here again.

Today we are going to take a look at a new device from Samsung, the SZ985, which is marketed as a ultra-low latency NVMe SSD based on Samsung Z-NAND flash memory and a new NVMe controller.

In practice: How customers are using Shielded Virtual Machines to secure data

You’ve read and heard a lot from Microsoft about the unprecedented security provided by Shielded Virtual Machines in Windows Server 2016, but how is this feature being used by real customers? We decided to round up a few customer stories …

Improving the app launcher user experience in Azure AD

Howdy folks,

Imagine a user visiting your companys Azure AD app launcher for the first time and finding exactly the apps they need to be productive and effective. No confusion or clutter. A dream scenario, right?

Youve sent us more …

Infrastructure + Security: Noteworthy News (December, 2017-Part 1)

Hello there! Stanislav Belov here to bring you the next issue of the Infrastructure + Security: Noteworthy News series!  

As a reminder, the Noteworthy News series covers various areas, to include interesting news, announcements, links, tips and tricks from Windows, …

Simple PowerShell Network Capture Tool

Hello all. Jacob Lavender here again for the Ask PFE Platforms team to share with you a little sample tool that I’ve put together to help with performing network captures. This all started when I was attempting to develop an …

1711 update to Project “Honolulu” Technical Preview is now available!

This blog post was authored by Jeff Woolslayer, Program Manager, Windows Server.

Project “Honolulu” was announced in September and had a fantastic reception at Ignite. To all of you that have downloaded the Technical Preview and provided feedback via …

System Center Visual Studio Authoring Extension(VSAE) support for Visual Studio 2017 

Visual Studio Authoring Extension(VSAE) is now updated to be compatible with Visual Studio(VS) 2017. VSAE is the most commonly used authoring extension by the Management Pack(MP) development community. The MP developers want to use it with the latest Visual Studio

Building VM template using Assigned Access

Since it took me a couple of attempts to create VM templates for Azure portal management and Remote Desktop (in order to make them available for the TAP evaluation), I thought it best to share the process, so you can …

Azure Information Protection Documentation Update for November 2017

Hi everybody

Our technical writer, Carol Bailey, is letting you know whats new and hot in the docs for November.

Reminders: Follow us on Twitter (Microsoft Mobility @MSFTMobility) and join in our peer community at www.yammer.com/AskIPTeam.

Gagan (on

The Evolution of RDMA in Windows: now extended to Hyper-V Guests

This post written by Don Stanwyck, Senior Program Manager, Windows Core Networking

Remote DMA (RDMA) is an incredible technology that allows networked hosts to exchange information with virtually no CPU overhead and with extremely little latency in the end

Why use shielded VMs for your privileged access workstation (PAW) solution?

It’s great to see customers trying out PAWs and it’s generating a lot of great questions. Many questions are related to shielded VMs so I’d like to focus this blog post on sharing our reasoning for building

Update on retirement of Azure AD classic portal experience and migration of conditional access policies

Howdy folks,

Quick blog post today to let you know of some updates related to the new Azure AD admin experience. We recently added functionality in the new admin experience to help you manage and migrate your v1 conditional access …

New Remote Desktop app for macOS available in the App Store

This post is authored by Eva Seydl, Program Manager, Remote Desktop Services.

It is time to hit refresh on the Remote Desktop (RD) experience for macOS. Download the next generation application in the App Store today to enjoy the new …

Ask Microsoft Anything: Windows Server Containers

Containers are redefining the way we build and operate reliable systems in the cloud by providing a way to wrap up an application in its own isolated box. For the application in its container, it has no knowledge of any …

Update for the Configuration Manager Client Messaging SDK

The Configuration Manager team is pleased to announce that an updated version of the Configuration Manager Client Messaging SDK version 5.1710.1059.1000 is now available on NuGet.org.

Notable changes in this version:

  • Support for Cryptography Next Generation (CNG) certificates on Configuration

Detecting remote code execution with Microsoft Advanced Threat Analytics

We know that attackers can often use legitimate tools to take malicious actions. Recent incidents have been perpetrated using a known technique called Remote Code Execution (RCE) to spread malware inside a target network. This technique can be executed using …

Using WMI to Verify Group Policy

Scenario:

My name is Benjamin Morgan and I’m a Platforms PFE. Recently I was working with a customer on a Windows 10 upgrade project and they posed an interesting requirement. They needed to be able to verify that their required …

Mix and Match WorkFolders, Azure AD, and AAD Application Proxy

Hi, Michele Ferrari here from the Premier Field Engineer-Identity Team in San Francisco here today to do some mix and match about multiple technologies we have within the Azure space.

This is the question we’re going to answer today: