Core Infrastructure and Security Blog

1,829 Blog Articles

Options

979

TanTran on 05-05-2021 05:54 AM

Windows Defender Guard Events searched by Windows Event Viewer and by Microsoft 365 Security Advanced Hunting.

741

Bruno Gabrielli on 05-03-2021 12:00 AM

One big question from customers about Azure Monitor alerts is how to change their status automatically. This post is try...

1,318

hewagen on 04-29-2021 07:02 AM

This blog post is about how to approach a sporadical workstation lock. I'm using tools like XPerf and Windows Performanc...

1,902

hspinto on 04-26-2021 12:00 AM

Sharing some tips about how to leverage NSG Flow Logs and Traffic Analytics to improve your Azure network security hygie...

2,242

EJansen on 04-22-2021 12:05 AM

Eric Jansen here to talk about an interesting, but dangerous scenario that I've been seeing all too often in my travels.

1,183

Joel Vickery on 04-19-2021 04:57 PM

A mild mannered IT administrator is doing routine patching when things go south. At first it seems like maybe just a cas...

2,346

Eric_Woodruff on 04-15-2021 08:15 AM

Exploring how Azure AD and Azure AD Connect match user objects from Active Directory

1,494

magdysalem on 04-12-2021 04:30 PM

Pod Identity is a feature allows applications deployed to communicate with AAD, request a token then use the token to ac...

1,332

AndrewCoughlin on 04-08-2021 12:00 AM

In this blog post we will talk about an issue I ran into in the past around setting up Active Directory Authentication f...

2,414

bwatts670 on 04-05-2021 06:00 AM

Detecting anomalies in your data can be a powerful tool. In this article we examine how to do exactly this with data in ...

1,751

magdysalem on 03-31-2021 11:45 AM

Today as we develop and run application in AKS, we do not want credentials like database connection strings, keys, or se...

5,114

Russ Rimmerman on 03-30-2021 09:21 PM

I've heard a bit of interest expressed recently in the ability to create a customizable Endpoint Configuration Manager (...

1,930

BrandonWilson on 03-26-2021 11:57 AM

Investigating Hyper-V live migration failures that result in a 0x8009030E error

1,331

BrandonWilson on 03-22-2021 10:42 AM

After a bit of a hiatus, welcome (back) to the Noteworthy News series (March 2021 edition)!

3,122

John_Barbare on 03-17-2021 09:00 PM

Learn about the new "Warn Mode" for Attack Surface Reduction Rules and creating the profile in Microsoft Endpoint Manage...

2,885

John_Barbare on 03-14-2021 09:10 PM

In this blog I will go over investigating an incident in Microsoft 365 Defender using the new unified portal.

1,985

bwatts670 on 03-11-2021 05:00 AM

Looking for an easy way to make Azure REST API calls? Not comfortable writing code to do it? Well Azure Logic App to the...

3,080

pbracher on 03-10-2021 12:00 AM

This blog is in support of Microsoft Defender for Endpoint (MDE, formerly MDATP) on Red Hat Enterprise Linux (RHEL)

5,641

TanTran on 03-08-2021 03:36 AM

The Step-by-step suggestion for migrating MBAM Servers to MEM

3,018

TanTran on 03-05-2021 12:44 AM

All things about USB flash drives management including access protection, Bitlocker encryption, security and troubleshoo...

1,510

John_Barbare on 03-03-2021 12:00 AM

In this blog I will go over the Microsoft 365 Defender Security Portal and go into detail of the incident overview and e...

1,180

John_Barbare on 03-02-2021 12:00 AM

This new workshop introduces configuration deployment in a lab using Microsoft Endpoint Manager for Microsoft Defender f...

1,599

hewagen on 02-25-2021 10:59 PM

This blog post shows a way to enable application setups to change file type associations.

2,108

bwatts670 on 02-24-2021 09:00 AM

Have you ever wanted a report of newly created resources in your Azure Subscriptions. Lets take a look at an option to u...

5,483

hspinto on 02-23-2021 02:36 PM

This is the second post of a series dedicated to the implementation of automated Continuous Optimization with Azure Advi...

2,214

John_Barbare on 02-22-2021 12:00 AM

Learn about the importance of keeping your internet browser up to date, cryptomining, and a chromium sandbox exploit. Is...

2,349

AndrewCoughlin on 02-18-2021 12:00 AM

In this blog I will focus on how to upload a custom linux Hyper-V image for generation 2 virtual machines in Azure.

2,689

Fabian0402 on 02-14-2021 10:07 PM

In this article, we will learn about the Site Maintenance Tasks of your MECM and how to ensure that these Tasks are up a...

7,535

TanTran on 02-12-2021 03:33 AM

We discuss about Microsoft Defender for Endpoint Antivirus Configuration, Policy and exclusion list in detail to avoid m...

7,416

brmcmill on 02-10-2021 05:23 PM

First published on TECHNET on Mar 18, 2019 Hello everyone! I have found that Status Message Queries can be one of the mo...

Latest Comments

in You Might Want to Audit Your LAPS Permissions.... on 05-07-2021

Nice article and thanks for reminding the audit!

0 Likes

in How-to: Password-less FIDO2 Security Key Sign-in to Windows 10 HAADJ Devices on 05-07-2021

@RH / @FredChaussee Unfortunately, no updates as of today. I cannot say when the fix will be available because I don't know myself. I can guarantee you that the product team is actively working on this issue. I will update the post as soon as I hear of a workaround/fix.

1 Likes

in Finding a Process Which Sporadically Locks the Workstation on 05-06-2021

Very useful blog, thank much

0 Likes

in How-to: Password-less FIDO2 Security Key Sign-in to Windows 10 HAADJ Devices on 05-05-2021

Hi @LijuV I just install 21H1 from insider program, still have the issue.Do you have any updates?

1 Likes

in Mastering Configuration Manager Patch Compliance Reporting on 05-05-2021

Hi @Navajyoti the report server URI parameter should point to the report server API instead of the ConfigMgr reports folder.Not like: -ReportServerURI "http://clhqsm217/Reports/browse/ConfigMgr_EUC" Instead like: -ReportServerURI "http://clhqsm217/reportserver" The URI might be different if you chan...

0 Likes