Hi everyone! Tyson Paul here with this month’s “Check This Out!” (CTO!) guide. Our goal with these posts is to guide you toward content that piques your interest, whether it's for learning, troubleshooting, or discovering new sources. Each month, we’ll give you a snapshot of intriguing blog content, provide direct links to the source material, and introduce you to other valuable blogs you might not know about yet. If you’re a long-time reader, you’ll notice this series is similar to our previous “Infrastructure + Security: Noteworthy News” series. We hope you find this new format just as helpful and engaging. Thank you for your continued support from all of us on the Core Infrastructure and Security Tech Community blog team!
Member: TysonPaul | Microsoft Community Hub
Getting Started with Windows Admin Center Virtualization Mode
Team Blog: ITOps Talk
Author: OrinThomas
Published: 11/23/2025
Summary: Windows Admin Center Virtualization Mode is a new, preview web-based tool for managing large Hyper-V virtualization environments. It centralizes compute, networking, and storage management for thousands of hosts within the same Active Directory domain. The article outlines installation prerequisites, step-by-step setup, and onboarding of Hyper-V hosts into resource groups. Users configure networking, storage, and compute properties, then manage hosts and virtual machines through a streamlined UI. The guide emphasizes certificate setup, domain requirements, and initial firewall adjustments for onboarding. Links to public preview and documentation are provided for further exploration.
Microsoft Entra Domain Services: Deploy, Join a VM, and Use Classic AD Tools
Team Blog: ITOps Talk
Author: OrinThomas
Published: 11/24/2025
Summary: Microsoft Entra Domain Services (Entra DS) enables managed Active Directory domain controller functionality in Azure, allowing you to domain-join Windows Server VMs, use Group Policy, and manage DNS without maintaining your own DC VMs. The article guides you through setting up a virtual network, deploying Entra DS, configuring DNS, joining a VM to the domain, and using classic AD and DNS management tools, streamlining identity and access management for cloud workloads while retaining familiar AD capabilities.
Azure Governance @ Ignite 2025
Team Blog: Azure Governance and Management
Author: jodiboone
Published: 11/22/2025
Summary: Azure Governance at Ignite 2025 introduced significant updates, including the public preview of Service Groups for flexible resource hierarchies and low-privilege management. New integrations with Azure Monitoring and Resiliency were announced. Azure Policy enhancements feature Identity Based Exemptions and a revamped UX for improved compliance and policy lifecycle management. Machine Configuration now offers an extensibility framework for customizable Windows and Linux baselines aligned with CIS standards. These updates aim to simplify governance, boost security, and improve policy management for deploying secure applications in Azure environments.
Empower Smarter AI Agent Investments
Team Blog: Azure Governance and Management
Author: Fernando_Vasconcellos
Published: 11/05/2025
Summary: The article presents a series of modules designed to help technical and business leaders make cost-effective decisions throughout the AI agent lifecycle on Azure. Covering topics from use case selection and understanding cost drivers to forecasting ROI, adopting best practices, choosing development approaches, architecting scalable solutions, and ongoing optimization, the learning path offers actionable strategies for building, deploying, and managing AI agents. By aligning innovation with financial discipline, these modules ensure sustainable value, operational excellence, and long-term success for enterprise AI initiatives.
Using Packet Capture for troubleshooting Azure Firewall flows
Team Blog: Azure Network Security
Author: ShabazShaik
Published: 11/10/2025
Summary: The article introduces Azure Firewall’s new Packet Capture feature, now generally available, which enables detailed troubleshooting by capturing network packets traversing the firewall. It explains how packet capture aids in diagnosing connectivity issues, outlines setup steps, and demonstrates real-world scenarios including VNET-to-VNET, DNAT, outbound internet access, and application rule traffic. The captured data allows administrators to analyze bidirectional flows, correlate requests and responses, and pinpoint network or application issues. Overall, packet capture significantly enhances network visibility, security, and operational reliability within Azure environments.
General Availability of JavaScript Challenge in Azure Front Door WAF
Team Blog: Azure Network Security
Author: andrewmathu
Published: 11/11/2025
Summary: Microsoft has announced the general availability of the JavaScript Challenge feature for Azure Front Door’s Web Application Firewall (WAF). This feature adds an automated, browser-based anti-bot layer to distinguish legitimate users from malicious scripts, enhancing protection against modern bot attacks while maintaining user experience. The challenge is lightweight and invisible to users, can be flexibly applied to specific endpoints, and is easily configured via WAF policies. Existing preview configurations remain supported, and comprehensive documentation is available for setup and best practices.
Announcing Public Preview of Window Server 2025 on Azure Kubernetes Service
Team Blog: Containers
Author: Akarsh
Published: 11/18/2025
Summary: Microsoft has announced the public preview of Windows Server 2025 support on Azure Kubernetes Service (AKS), offering enhanced security, performance, and compatibility. Users can deploy Windows Server 2025 node pools alongside other OS options, run Windows Server 2022 containers on 2025 hosts, and benefit from improved portability. Nano Server now supports more applications and Feature on Demand, optimizing resource use. Additionally, Windows Server 2025 enables GPU acceleration for containerized workloads. Customers can test Windows Server 2025 in AKS and provide feedback to help shape future container offerings.
AI and human potential: Advancing skills, innovation, and outcomes
Team Blog: Microsoft Learn
Author: ToddMinor
Published: 11/21/2025
Summary: Organizations worldwide are partnering with Microsoft to upskill employees in AI, driving innovation, efficiency, and business growth across sectors. Through initiatives like AI Skills Navigator, companies such as Albertsons, Levi Strauss, Vodafone, and Danone are integrating AI into daily work, fostering resilient, future-ready teams. Real-world examples from banking, retail, energy, and technology highlight that true transformation starts with people, not just technology. Empowered employees use AI to reimagine work, enhance productivity, and deliver meaningful outcomes, proving that continuous learning and AI adoption are key to unlocking human and organizational potential.
Powering career and business growth through AI-led, human-enhanced skilling experiences
Team Blog: Microsoft Learn
Author: jeanaj
Published: 11/18/2025
Summary: The article introduces Microsoft’s AI Skills Navigator, a unified, AI-powered learning platform designed to help individuals and organizations rapidly build and validate essential AI and human skills for career and business growth. Integrating content and credentials from Microsoft, LinkedIn, and GitHub, it offers personalized, interactive, and shareable learning experiences. Strategic partnerships with LinkedIn, GitHub, and Pearson further expand access to verified credentials and tailored training. The initiative aims to address the challenge of keeping pace with AI-driven changes, making upskilling accessible, relevant, and collaborative for the global workforce.
Azure NCv6 Public Preview: The new Unified Platform for Converged AI and Visual Computing
Team Blog: Azure High Performance Computing (HPC)
Author: rishabv90
Published: 11/24/2025
Summary: Microsoft has announced the Azure NCv6 series, now in public preview, featuring NVIDIA RTX PRO 6000 Blackwell GPUs and Intel Granite Rapids CPUs. The NCv6 offers a unified platform for converged AI and visual computing, supporting digital twins, LLM inference, agentic workflows, and high-fidelity rendering. With scalable sizing, massive memory, and fractional GPU options, it caters to diverse workloads in AI, simulation, media, and remote desktops. This platform delivers breakthrough performance, cost-effective infrastructure, and seamless upgrades, empowering enterprises to innovate in the era of converged AI and industrial digitalization.
Azure ND GB300 v6 now Generally Available - Hyper-optimized for Generative and Agentic AI workloads
Team Blog: Azure High Performance Computing (HPC)
Author: Nitin_Nagarkatte
Published: 11/19/2025
Summary: Microsoft has announced the general availability of Azure ND GB300 v6 virtual machines, featuring thousands of NVIDIA GB300 NVL72 Blackwell Ultra GPUs and next-gen InfiniBand networking. These VMs deliver major performance improvements for generative and agentic AI workloads, including frontier model training and large-scale inference. With record-breaking throughput, scalable architecture, and advanced management tools, ND GB300 v6 enables efficient deployment and scaling of trillion-parameter models, long-context, and multimodal AI tasks, reaffirming Microsoft’s leadership in AI infrastructure and partnership with NVIDIA.
Deriving expiry days and remaining retention days for blobs through blob inventory
Team Blog: Azure PaaS
Author: Harshi_mrinal
Published: 11/11/2025
Summary: The article explains how to derive expiry days and remaining retention days for blobs in Azure Blob Storage and Data Lake Gen2 accounts using Blob Inventory reports. It outlines steps to set blob expiry, generate inventory CSV files, and use Azure Synapse SQL queries to list expiry times and retention days for soft-deleted blobs. The process helps organizations manage data lifecycle, optimize storage, and ensure compliance. Alternative methods such as PowerShell and Azure CLI are also suggested for similar tasks. Reference links for further learning are provided.
Update Coverage Workbook in Microsoft Defender for Cloud to Include Defender for AI Plan status
Team Blog: Core Infrastructure and Security
Author: SantoshPargi
Published: 11/03/2025
Summary: The article outlines two methods to track Defender for AI plan status in Microsoft Defender for Cloud. Option 1 involves updating the existing Coverage Workbook to display Defender for AI data, offering centralized visibility but needing manual maintenance. Option 2 uses Azure Resource Graph Explorer to run queries for AI plan status across subscriptions, providing flexibility and easier automation but separate from the workbook interface. The recommendation: update the Coverage Workbook for unified dashboards, or use Resource Graph Explorer for quick or automated checks.
Platform SSO for macOS
Team Blog: Core Infrastructure and Security
Author: Farooque
Published: 11/10/2025
Summary: Microsoft’s Platform SSO for macOS enables secure, passwordless authentication using Touch ID, smart cards, and passkeys, leveraging Apple’s SSO framework and integrating with Entra ID. Supporting macOS 13+, it streamlines device and app sign-in, offers centralized identity management, and requires no additional agent. Deployment involves Intune policies, device enrollment, and configuration of authentication methods. Administrators can customize login experiences and should align password policies and group assignments for compliance. Platform SSO improves security, user experience, and operational efficiency for organizations transitioning to modern authentication solutions.
Announcing Network HUD: Operational Network Monitoring for Windows Server 2025
Team Blog: Networking
Author: Basel_Kablawi
Published: 11/18/2025
Summary: Network HUD is a new operational network monitoring tool for Windows Server 2025 clusters, offering real-time health checks and actionable insights to prevent networking issues. It detects adapter instability, driver incompatibility, storage inconsistencies, and misconfigured VLANs, reducing troubleshooting time. Integrating with physical switches via LLDP, Network HUD ensures host and network fabric alignment. Delivered as an Arc extension, it enables easy deployment and alerting through Windows Admin Center and PowerShell, helping administrators proactively maintain stable, high-performing server environments and avoid costly downtime.
Announcing General Availability for AccelNet on Windows Server 2025
Team Blog: Networking
Author: Basel_Kablawi
Published: 11/18/2025
Summary: Microsoft has announced the general availability of Accelerated Networking (AccelNet) for Windows Server 2025 Datacenter. AccelNet uses SR-IOV technology to bypass the virtual switch, reducing CPU overhead and delivering predictable, low-latency performance for demanding workloads. It enables higher VM density per host and integrates seamlessly with Hyper-V and Failover Clustering. Deployment is simplified via Windows Admin Center and PowerShell, ensuring easy, scalable, and consistent configuration. AccelNet provides a consistent operational model across hybrid environments, benefiting scenarios like OLTP, in-memory caching, and dense virtualization.
Azure Local 22H2 Clusters: End of Service and Feature Degradation
Team Blog: Azure Arc
Author: Arpita Duppala
Published: 11/25/2025
Summary: Azure Local version 22H2 reached End of Service on May 31, 2025. Starting February 23, 2026, Microsoft will begin degrading features, including disabling Extended Security Updates (ESU) and Windows Server Subscription (WSS) benefits. Customers cannot renew or purchase ESU/WSS, risking security vulnerabilities and compliance issues. Microsoft will not restore degraded features or provide remediation for risks. To maintain support and security, customers are urged to upgrade to version 24H2 promptly to avoid service disruptions and compliance violations.
Transforming City Operations: How Villa Park and DataON Deliver Real-Time Decisions with Edge RAG
Team Blog: Azure Arc
Author: moran_assaf
Published: 11/18/2025
Summary: The article details how Villa Park, California, in partnership with DataON and Microsoft, leverages Edge Retrieval-Augmented Generation (Edge RAG) to modernize city operations. Using Azure Local infrastructure, Edge RAG enables fast, secure, and offline AI-powered workflows for zoning, compliance, and permitting, drastically reducing processing times. New features include advanced document parsing, multimodal search, SharePoint integration, and autonomous workflows. Villa Park serves as a model for smart city transformation, demonstrating how edge AI enhances operational resilience, data security, and efficiency, while allowing municipalities to maintain data sovereignty and tailor AI solutions to their needs.
Announcing Cobalt 200: Azure’s next cloud-native CPU
Team Blog: Azure Infrastructure
Author: sebilgin
Published: 11/18/2025
Summary: Microsoft has announced Azure Cobalt 200, its next-generation Arm-based CPU for cloud-native workloads, offering up to 50% better performance than Cobalt 100. Featuring 132 cores, advanced memory encryption, custom compression and cryptography accelerators, and built-in Azure Boost networking and storage capabilities, Cobalt 200 is designed for optimized efficiency, security, and workload compatibility. The CPU leverages extensive real-world benchmarking and AI-powered simulations to achieve optimal performance and energy savings. Cobalt 200 servers are now live in datacenters, with broader customer availability expected in 2026.
Enabling Private Connectivity for Microsoft Fabric: A Practical Guide
Team Blog: Azure Infrastructure
Author: mohit-kanojia
Published: 11/19/2025
Summary: The article outlines strategies for securely integrating Microsoft Fabric—a unified analytics SaaS platform—into large, security-sensitive enterprise environments with private-only, Zero-Trust architectures. It details how Fabric’s components (Lakehouse, Warehouse, Spark, Workspaces) can be accessed via private endpoints, managed private endpoints, VNet data gateways, and private DNS, ensuring no public exposure. The author shares a practical architecture using Azure’s hub-spoke model and highlights governance, automation with Terraform, and robust network controls, demonstrating that with careful planning, Fabric can operate securely within strict enterprise boundaries.
Pure Storage Cloud, Azure Native evolves at Microsoft Ignite!
Team Blog: Azure Storage
Author: Aung_Oo
Published: 11/19/2025
Summary: Microsoft has expanded its Azure Native Pure Storage Cloud integration, enabling customers to provision Pure Storage volumes to Azure Virtual Machines for both Linux and Windows applications. This partnership leverages Pure Storage’s enterprise-grade features, cost efficiency, and resilience, simplifying deployment and management via Azure Portal tools. Organizations have reported significant cost savings and improved performance, with benefits like advanced data management, rapid restores, and enhanced security. The service is available as a fully managed, Azure-native solution, now supporting both Azure VMware Solution and Azure VMs, with a 30-day free trial offered for new users.
Reduce latency and enhance resilience with Azure Files zonal placement
Team Blog: Azure Storage
Author: hanagpal
Published: 11/18/2025
Summary: Azure Files Premium LRS now supports zonal placement, allowing users to pin storage accounts to a specific Azure Availability Zone. This feature reduces latency by co-locating storage and compute resources, optimizes performance for latency-sensitive workloads, and enhances resilience by isolating failure domains. Zonal placement is available for both SMB and NFS shares and can be configured during storage account creation or update. It is ideal for databases, enterprise platforms, and business applications, and is currently available in select regions supporting Premium LRS and Availability Zones.
Streamline Analytics Spend on Microsoft Fabric with Azure Reservations
Team Blog: FinOps
Author: kyleikeda
Published: 11/24/2025
Summary: Microsoft Fabric is an integrated SaaS data platform offering unified analytics and AI, powered by OneLake. Organizations can optimize their analytics spend by purchasing Azure reservations for Fabric Capacity Units, which provide significant discounts for predictable workloads. Reservations simplify purchasing, offer flexible payment options, and can be managed via the Azure Portal. Best practices include careful usage estimation, enabling auto-renewal, monitoring with Azure Cost Management, and choosing appropriate scopes. By leveraging reservations, businesses can maximize savings while maintaining performance and scalability. For more details, visit the Microsoft Marketplace or Azure Portal.
Accelerating HPC and EDA with Powerful Azure NetApp Files Enhancements
Team Blog: Azure Architecture
Author: GeertVanTeylingen
Published: 11/14/2025
Summary: Azure NetApp Files introduces major enhancements for High-Performance Computing (HPC) and Electronic Design Automation (EDA) workloads, offering breakthrough petabyte-scale storage, high throughput, and advanced data management. New features include large volume support (up to 7.2 PiB), cool access for cost savings, user/group quota reporting, robust backup and single-file restore, hybrid cloud data mobility, cache volumes for burst-to-cloud, and AI-ready object REST API integration. These innovations boost scalability, reliability, operational efficiency, and security, enabling teams to accelerate time-to-market, optimize costs, and confidently manage complex, data-intensive workloads in the cloud.
Introducing Local Identity with Azure Key Vault in Build 2510
Team Blog: Azure Architecture
Author: ShireenIsab
Published: 11/07/2025
Summary: Microsoft has announced a public preview of local identity integration with Azure Key Vault in Build 2510, enabling Azure local clusters to operate without Active Directory, simplifying deployments and backup processes. Key Vault integration allows seamless backup of keys, with compatibility efforts underway with partners like Veeam, Commvault, Dell, and Lenovo. Additionally, private previews introduce a Management Toolkit for secure cluster administration and Internal DNS for simplified name resolution, both designed to work without Active Directory. Users are encouraged to upgrade, test features, and provide feedback via email.
Migrate or modernize your applications using Azure Migrate
Team Blog: Azure Migration and Modernization
Author: Shikher
Published: 11/10/2025
Summary: Azure Migrate is Microsoft’s free platform for migrating and modernizing applications to Azure, offering features like application-aware migration, multi-server dependency mapping, software and security insights, and code-level analysis integration. It enables holistic migration planning by grouping workloads into applications, providing ROI analysis, and supporting phased wave planning for execution. The platform integrates with tools like GitHub Copilot and CAST for code assessment, facilitating collaboration among IT, security, and development teams, and supports a wide range of workloads and migration strategies for a seamless cloud transition.
Migration Agent - Unlocking transformation
Team Blog: Azure Migration and Modernization
Author: SShastri
Published: 11/18/2025
Summary: The article highlights how IT modernization is an ongoing transformation, driven by cloud-native architectures and innovations like AI. Central to this journey is the new Migration Agent powered by Azure Migrate, which provides actionable insights, security assessments, and evidence-backed recommendations for migration. It automates infrastructure deployment, ensures governance, and supports wave-based migration planning. Integration with tools like GitHub Copilot and CAST Highlight accelerates modernization, making cloud migration a continuous, developer-driven process that enhances agility, security, and business alignment, positioning Azure as a strategic launchpad for digital transformation.
Azure CLI and Azure PowerShell Ignite 2025 Announcement
Team Blog: Azure Tools
Author: Alex-wdy
Published: 11/19/2025
Summary: At Microsoft Ignite 2025, Azure CLI and Azure PowerShell announced major updates focused on quality, security, and AI integration. Key enhancements include MFA enforcement, Python 3.13 compatibility, new "What-If" and "Export Bicep" features, expanded service and extension support, and improved endpoint discovery. MFA claims challenges and optional pagination for large datasets were also addressed. These updates aim to streamline user workflows, bolster security, and leverage AI for smarter cloud management. Full release notes and migration guides are available for users to ensure smooth upgrades.
Gaining Confidence with Az CLI and Az PowerShell: Introducing What if & Export Bicep
Team Blog: Azure Tools
Author: stevenbucher
Published: 11/21/2025
Summary: Azure CLI and Azure PowerShell now offer “What if” and “Export Bicep” features in private preview, letting users safely preview command impacts and export actions as Bicep templates before making changes. These tools reduce risk, boost confidence, and accelerate infrastructure-as-code adoption by validating scripts and converting commands into reusable templates. Supported for select commands, users can sign up for early access and provide feedback, improving productivity and minimizing deployment errors in Azure environments.
Support tip: Aligning network policy with Microsoft Intune and Zero Trust
Team Blog: Intune Customer Success
Author: Intune_Support_Team
Published: 11/03/2025
Summary: The article discusses aligning network policies with Microsoft Intune and Zero Trust principles, emphasizing the limitations of traditional perimeter-based architectures in supporting cloud services and hybrid work. It outlines three models—endpoint, domain, and domain/IP enforced access—for managing outbound traffic, recommending automation and bypassing inspection for Microsoft traffic. Adopting cloud-native tools and Zero Trust controls improves security, reliability, and user experience. The article encourages modernizing network architecture to support cloud services and details Microsoft’s ongoing enhancements, such as moving Intune endpoints to Azure Front Door for better performance and security.
Debunking the myth: Cloud-native Windows devices and access to on-premises resources
Team Blog: Intune Customer Success
Author: Intune_Support_Team
Published: 11/14/2025
Summary: The article debunks the myth that cloud-native Windows devices can’t access on-premises resources. It explains that, with minimal configuration, these devices can connect to file shares and legacy apps using NTLM or Kerberos authentication. By leveraging Microsoft Entra ID, Intune, and solutions like Windows Hello for Business and Zero Trust Network Access, organizations can maintain security and user experience while accessing on-premises resources. The article also recommends adopting modern identity and security frameworks and offers resources such as Microsoft’s Zero Trust Workshop for effective implementation.
Reimagining VM Application Management for an AI-Powered, Secure Future
Team Blog: Azure Compute
Author: tanmay-gore
Published: 11/18/2025
Summary: The article discusses the transformation of virtual machine (VM) application management amid increasing AI-driven automation and security demands. Traditional deployment methods are inadequate for modern needs. Azure VM Applications offers a managed, end-to-end solution, enabling rapid, secure, and version-controlled deployment of diverse workloads. Key features include modular packaging, fast publishing, seamless CI/CD integration, regional replication, granular security controls, and unified monitoring. These capabilities improve resilience, compliance, and operational efficiency, allowing organizations to safely manage and scale VM applications for AI-powered workloads while streamlining software lifecycle management.
Introducing Metadata Security Protocol (MSP): Elevating Platform Security for Azure VMs
Team Blog: Azure Compute
Author: Amjad_Shaik
Published: 11/19/2025
Summary: Microsoft has announced the General Availability of Metadata Security Protocol (MSP) for Azure VMs, providing industry-first authentication and authorization for metadata service endpoints. MSP introduces a default-closed security model, enforcing access controls and zero-trust principles for Instance Metadata Service (IMDS) and WireServer. Key features include HMAC-based authentication, process-level RBAC, eBPF-powered request verification, and granular allowlisting. MSP significantly reduces attack surfaces such as SSRF and nested tenancy bypasses. Adoption involves auditing current access, creating an allowlist, and enforcing restrictions, enhancing defense-in-depth for sensitive VM metadata.
Simplify container network metrics filtering in Azure Container Networking Services for AKS
Team Blog: Azure Networking
Author: KhushbuP
Published: 11/08/2025
Summary: Azure Container Networking Services for AKS now offers container network metrics filtering in public preview, allowing users to control which metrics are collected at the pod level using Kubernetes custom resources. This feature reduces metrics bloat, lowers storage and ingestion costs, and improves dashboard clarity by filtering data before it reaches observability tools. Filters can be dynamically updated without downtime and target specific namespaces or pod labels, ensuring only relevant metrics are captured. Users can enable this by defining filters with the ContainerNetworkMetric CRD and validating settings, streamlining network observability and cost management.
Integrating Azure Application Gateway v2 with Azure API Management for secure and scalable API
Team Blog: Azure Networking
Author: ranjsharma
Published: 11/18/2025
Summary: Integrating Azure Application Gateway v2 with Azure API Management secures and scales API access, combining WAF protection, advanced routing, and API governance features. The article details various deployment scenarios (public, private, hybrid), network/DNS requirements, security hardening (TLS, WAF, mTLS, private endpoints), and observability best practices. It covers Terraform deployment, CI/CD automation, diagnostics, cost optimization, troubleshooting, and a production readiness checklist. This integration enables robust security, scalability, and centralized API management for cloud, hybrid, and on-premises backends.
Announcing new hybrid deployment options for Azure Virtual Desktop
Team Blog: Azure Virtual Desktop
Author: SteveDMSFT
Published: 11/18/2025
Summary: Microsoft has announced a limited preview of Azure Virtual Desktop for hybrid environments, enabling organizations to run cloud-native virtual desktops and applications on existing on-premises infrastructure via Azure Arc. This expands support to various hypervisors and hardware, allowing businesses to leverage current investments while maintaining unified management. Key partners—ControlUp, LoginVSI, Nerdio, and Nutanix—are providing integration and support. The solution offers flexibility, optimized management, and a clear path to cloud migration, addressing performance, compliance, and data residency needs for hybrid IT environments. Interested organizations can enroll via Microsoft’s preview interest form.
Microsoft