Core Infrastructure and Security Blog

1,748Blog Articles

Options

553

MorneNaude on 10-21-2020 11:18 AM

Conditional Access Adoption This blog describes how we migrated away from “per user” base multifactor authentication to ...

1,990

TanTran on 10-19-2020 03:48 AM

Sometimes you forgot a few content lines in the needed advanced hunting query of Microsoft Endpoint Protection (Microsof...

869

Bruno Gabrielli on 10-16-2020 12:00 AM

Today, I am here again, to present one of the possible solutions to keep the Microsoft Monitoring Agent (MMA) installed ...

1,152

BrandonWilson on 10-15-2020 01:12 PM

First published on TechNet on Jul 22, 2012 Now, there is no possible way to cover every possible detail from every day d...

842

Bruno Gabrielli on 10-13-2020 03:00 PM

The question of the day is how can we make sure our Log Analytics agent (aka Microsoft Monitoring Agent (MMA)) is always...

2,716

John_Barbare on 10-12-2020 12:01 AM

In this blog, you will learn about human operated Ransomware, SharePoint Online recovery, and the preventive measures to...

5,908

John_Barbare on 10-09-2020 12:01 AM

In this blog you will learn about Windows 10 auto enrollment for a work or school account in Microsoft Endpoint Manager.

1,817

Preston Parsard on 10-07-2020 04:38 PM

Jessica, our cloud engineer has just built an Azure development lab environment using Infrastructure-As-Code.

1,538

Bruno Gabrielli on 10-04-2020 03:00 PM

While there are lots of good resources about writing Log Analytics queries and many blog posts have been written, today ...

3,983

Zoheb Shaikh on 10-01-2020 04:20 PM

Zoheb here again with my colleague Simon Woolley from the beautiful city of Dubai and today we will be sharing some deta...

1,113

Jen_Ross on 10-01-2020 10:38 AM

You are reading the September issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Notewor...

1,447

TanTran on 09-30-2020 08:29 PM

Microsoft Defender Advanced Threat Protection Operation for Security Operator, Security Administrator.

1,269

Srinivas Varukala on 09-27-2020 10:30 PM

With the latest release of SharePoint Online Client Components aka CSOM (Client-Side Object Model) (version: 16.1.20317....

2,109

AndrewCoughlin on 09-25-2020 12:00 AM

In this blog I will focus on adding an additional server to an Azure File Sync and remove the old server.

1,847

HoussemDellai on 09-23-2020 01:46 AM

Learn how to scale applications in Kubernetes using the HPA, Cluster Autoscaler and the Virtual Node.

2,214

Paul Bergson on 09-21-2020 06:24 AM

Microsoft has built in security controls in our modern o/s’s to assist our customers in controlling the use of defined U...

2,615

AndrewCoughlin on 09-18-2020 12:00 AM

I will cover how to integrate DFS Namespaces with Azure File Sync and add a file sync server to an existing target folde...

4,113

TanTran on 09-16-2020 06:59 PM

Step-by-step deploying, testing and troubleshooting Azure ATP

2,614

AndrewCoughlin on 09-14-2020 12:00 AM

In this blog I will focus on how to upload a custom windows Hyper-V image for generation 2 virtual machines in Azure.

4,051

Zoheb Shaikh on 09-10-2020 03:46 PM

Zoheb here again with my colleague Peter Chaukura from Microsoft South Africa and today we will be sharing some details ...

2,839

TanTran on 09-09-2020 05:09 AM

Step-by-step troubleshooting WUfB deployed by Intune or SCCM. The troubleshooting tools include Azure Update Compliance ...

8,761

John_Barbare on 09-07-2020 12:20 AM

In this blog, you will learn and see a demo of Microsoft Defender Application Guard for Office in Public Preview.

1,508

Jen_Ross on 09-04-2020 12:01 AM

You are reading the August issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Noteworthy...

1,503

Dave Newman (PFE) on 09-03-2020 08:43 PM

Azure Site Recovery is a great tool but sometimes the system makes decisions for you that may not match with your corpor...

5,625

Jerry Devore on 09-02-2020 12:58 PM

In response to the current threat landscape, security departments are beginning to require AES for Kerberos ticket encry...

2,174

rodtrent on 09-01-2020 06:45 AM

Learn how to grant access to specific Playbooks for lower-role analysts to help maximize productivity for the entire Sec...

3,866

rodtrent on 08-31-2020 08:45 AM

Learn how to share Workbooks with others outside of Azure Sentinel to give access to the valuable visualizations/reports...

4,274

Arnab Mitra on 08-27-2020 06:14 AM

As an IT admin you plan to ship new devices to end users which can join the on-premises AD (Active Directory) by leverag...

2,715

RodrigoGiordano on 08-26-2020 09:08 AM

Users are working remotely or home office. What should we consider when provisioning/manage remote computers.

5,035

John_Barbare on 08-24-2020 09:00 PM

In this blog, you will learn how prone your organization is from an app perspective in MDATP and how to remediate using ...

Latest Comments

in Extending Hardware Inventory for System Center Configuration Manager on 10-21-2020

Likewise - very useful post, thanks! Just one other thing; the "Publish Certificate Inventory" script has a slight flaw, due to the fact that powershell .Count - can't!The final line reads (expanded for clarity):If( (Get-WmiObject -Namespace root\cimv2 -class cm_CertInfo).count -gt 0 ) {Write-Host "...

0 Likes

in Dharma Ransomware: Recovery and Preventative Measures on 10-20-2020

The Article provides critical information needed for proactive and reactive solution against ransomware attack. Excellent document!

0 Likes

in Microsoft Endpoint Protection (MD ATP) Commonly Used Queries and Examples on 10-19-2020

This is super useful and will bookmark! Thanks and excellent article.

0 Likes

in Maintain Your Microsoft Monitoring Agent Up To Date With Azure Automation on 10-19-2020

thanks for the useful script to automate the MMA upgrade

0 Likes

in Converting ETL Files to PCAP Files on 10-19-2020

Sadly etl2pcapng doesn't work as well as the message analyser export. Capturing VPN traffic I find the resulting pcap is missing that VPN traffic even though it is present in the etl file and is properly produced by the pcap export in Message analyser. netsh trace capture used to get traffic before ...

0 Likes