Core Infrastructure and Security Blog

Options

554

Chris Vetter on 05-21-2020 02:41 PM

This article will help you upgrade Configuration Manager in offline air-gapped environments

755

BrandonWilson on 05-18-2020 07:53 AM

Eunice Chinchilla walks you through tracking the source of ADFS account lockouts using solely the ADFS server and Azure ...

3,529

hspinto on 05-10-2020 04:00 PM

Here is Helder Pinto PFE presenting the first post of a series dedicated to the implementation of automated Continuous O...

782

Chris Vetter on 05-05-2020 12:51 PM

The intent of this guide is to prevent you from having to perform a Site Recovery or any Database Migrations after stand...

2,356

Jen_Ross on 05-01-2020 12:00 AM

You are reading the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Noteworthy N...

2,166

Jen_Ross on 04-29-2020 12:00 AM

You are reading the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Noteworthy N...

3,579

DanielMetzger on 04-26-2020 03:00 PM

Azure Update Management is a great and very affordable service offering to fully automate on-premises server patching. L...

14.1K

Michael Hildebrand on 04-23-2020 03:01 PM

There's been a whirlwind of questions about machine account password expiration due to the high volume of un-planned rem...

1,979

Jon Warnken on 04-20-2020 01:00 AM

Welcome to a tale from the lab of Jon Warnken a Premier Field Engineer. I have been working with recently, had a need fo...

1,497

David Loder on 04-13-2020 06:48 AM

When trying to track down an elusive Active Directory performance problem, gathering stats using the Active Directory Di...

9,680

Preston Parsard on 04-07-2020 01:26 PM

This post will provide instructions on how to build an automation lab in Azure that can be used for training or demonstr...

2,466

Naveen_Kanneganti on 04-03-2020 09:52 AM

This post is intended to give you guidance to implement Configmgr Bitlocker management, monitoring and troubleshooting.

3,825

Michael Hildebrand on 03-25-2020 06:23 AM

We're posting an out-of-band, mid-week post about using Intune Mobile App Management Policies to help secure and control...

4,332

skissel on 03-23-2020 01:25 PM

In a Zero Trust environment, the security gap between Intune and Group Policy could be a roadblock to more organizations...

1,107

Joe_Zinn on 03-19-2020 07:48 AM

The following document contains information needed to solve date time issues configuring the Microsoft Generic SQL Conne...

7,376

Matt Balzan on 03-13-2020 07:33 AM

A guide how to manage and troubleshoot the collections that are affecting the performance on your site

2,640

LijuV on 03-09-2020 08:48 AM

Use PowerShell to generate RSoP planning mode (modeling) data

2,330

John_Clyburn on 03-02-2020 12:00 AM

Hello everyone, my name is John Clyburn and I am a Sr. consultant in MCS. I recently ran into a problem connecting to a ...

1,806

John_Clyburn on 02-27-2020 12:00 AM

Hello everyone, my name is John Clyburn and I am a Sr. consultant in MCS. I recently ran into an interesting problem wit...

4,033

Stanislav Belov on 02-25-2020 11:55 PM

Hi there! You are reading the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the No...

3,328

DanielMetzger on 02-23-2020 03:00 PM

Use a Windows 10 laptop and convert it to a secure Hyper-V host to run the offline root CA.

2,684

Bruno Gabrielli on 02-21-2020 11:22 AM

Hello Security universe, today I came across an interesting news directly from the Product Group. After quite some time,...

6,129

DanielMetzger on 02-20-2020 08:37 AM

I am going to show you how to use a minimal set of Group Policy objects to isolate domain admins and domain controllers ...

1,943

BrandonWilson on 02-19-2020 05:54 AM

Some reports were received where app publishing is failing when using a User Configuration File applied to the packages....

5,236

Zoheb Shaikh on 02-13-2020 12:00 AM

Hi all! Zoheb Shaikh here again, and this time I will be sharing an interesting script to alert on Expiring certificates...

5,494

John_Clyburn on 02-10-2020 12:00 AM

Hello everyone, my name is John Clyburn and I am a Sr. consultant in MCS. I’ve recently been working with SCVMM 2019. I ...

4,750

Tim_Beasley on 02-06-2020 02:10 PM

Ever wonder how potentially vulnerable your tenant is in Azure? Learn how to enable the vulnerability assessment check i...

3,312

hspinto on 02-04-2020 07:21 AM

Learn how to use Azure Automation Hybrid Worker in on-premises scenarios where you need to authenticate against local re...

12.2K

Jon Warnken on 01-30-2020 06:53 AM

With the end of support for Windows 7, Windows Server 2008, and Windows Server 2008 R2 on January 14, 2020, many of our ...

6,910

Sean Greenbaum on 01-28-2020 09:19 AM

In this post, lets look into how to convert ETL files captured by NETSH into a .PCAP file format that can be used by oth...

Latest Comments

in Converting ETL Files to PCAP Files on 05-20-2020

Are you sure? What about pktmon.exe? It was added to windows 10 in October 2018, and seems to use the same ETL interface that netsh and powershell use (and I've seen nothing about either of those being sabotaged either). Why would microsoft kill such a useful tool as message analyzer when so many pe...

0 Likes

in Remote Desktop Connection (RDP) - Certificate Warnings on 05-20-2020

I was hoping for some input on our deployment...we are not using internal PKI for the RDS farm. Our internal domain name suffix is .com, so for example, our AD forest is "acme.com". We have purchased a wildcard certificate for *.acme.com from a public CA which we should be able to use for machines o...

0 Likes

in Converting ETL Files to PCAP Files on 05-20-2020

Since all MS network analysis tool are deprecated (netmon and message analyzer), Hopefully some day in the future Microsoft will work with Wireshark team and help them to have built-in elt parsers directly in Wireshark....

0 Likes

in Secure Channel/Expired Machine Account Password Concerns – Revisited on 05-20-2020

On the cached credentials part, if a user updates his password while being offline/away from a DC (so different user password in AD & locally)When he comes back, how does the password get "synced" again with AD?

0 Likes

in Basic Network Capture Methods on 05-18-2020

I'd love to see this article updated with the addition of pktmon.https://www.bleepingcomputer.com/news/microsoft/windows-10-quietly-got-a-built-in-network-sniffer-how-to-use/

0 Likes

Updating Configuration Manager in Offline Mode with the Service Connection Tool

Tracking the Source of ADFS Account Lockouts

Augmenting Azure Advisor Cost Recommendations for Automated Continuous Optimization – Part 1

Installing SQL 2016 for Configuration Manager in a PubSec Environment

Infrastructure + Security: Noteworthy News (April, 2020)

Infrastructure + Security: Noteworthy News (March, 2020)

Using Azure Update Management to Automate On-Premises Server Patching

Secure Channel/Expired Machine Account Password Concerns – Revisited

Using Azure Automation with Multiple Tenants

Getting Reports from Long Running Performance Monitor Data Collector Sets

How to Build an Azure Automation Lab

ConfigMgr Bitlocker Management

Use Intune MAM to Control Office Mobile Apps and Office 365 Content

Azure DSC for Zero Trust Windows 10 Devices Managed by Intune

Configuring the MIM 2016 Microsoft Generic SQL Connector for Oracle Date Time Values

SCCM: Housekeeping Collections

Exporting Resultant Set of Policy (RSoP) data using PowerShell

Can't connect to Windows Share - Error code: 0x80070035. The network path was not found.

VM Checkpoints Names in the Hyper-V Manager Window...

Infrastructure + Security: Noteworthy News (February, 2020)

Building the Totally Network Isolated Root Certification Authority

Be Aware, Azure Security Center CSV Reports is Now Generally Available!

Initially Isolate Tier 0 Assets with Group Policy to Start Administrative Tiering

App-V Publishing Fails If You Apply UserConfig Files

Script to send Email alerts on Expiring certificates for Important Certificate Templates

The VM xxx cannot be migrated to Host xxx due to incompatibility issues….

Enable Vulnerability Assessment Check in Azure Security Center (ASC)

How to use Group Managed Service Accounts (gMSA) in Azure Automation Hybrid Worker

Preparing to Deploy Extended Security Updates

Converting ETL Files to PCAP Files

Products (70)

Special Topics (19)

Most Active Hubs

Most Active Hubs