Windows Server
234 TopicsHow to In-Place Upgrade Windows Server 2008 R2 to Windows Server 2019
As you know the Windows Server 2008 and Windows Server 2008 R2 are out of support on January 14th, 2020. Customer will need to upgrade their Windows Server 2008 and Windows Server 2008 R2 to a newer version of Windows Server or migrate these servers to Microsoft Azure.440KViews8likes27CommentsSetting up DNS in a Hybrid Environment.
Hello Folks, I’m not sure when this became a series, but it’s looking like it’s going to be ongoing. I’m hoping it can give the community a sense of how you can slowly adopt cloud services to enhance your on-prem environment. It started a few weeks ago with the post on how I needed to replace the edge device on my home network. Then I followed up with how I now can use the site-to-site VPN I set up to access (RDP & SSH) all the servers in my environment using the Bastion host on Azure. But I’m at a point where I’ve got demo servers and services on both sides of the VPN. Name resolution is fast becoming an issue. How do I set up a DNS structure to efficiently resolve server IP addresses from an on-premises environment and vice versa without deploying VM-based DNS servers.17KViews5likes4CommentsHow to run a Windows 11 VM on Hyper-V
Happy new year everyone! Last month, before the holidays I wanted to run a Windows 11 VM on Hyper-V to run a few tests on Windows containers in a different environment than my local machine. However, it took me some time to get that VM up and running, simply because I forgot about the new hardware requirements for Windows 11 and that I had to get them configured before I installed the new OS in it. This blog post is my contribution so you don’t have to go through the same!204KViews14likes11CommentsFree Windows Server 2025 Security Advice Book
Windows Server 2025 introduces a suite of new and enhanced security features tailored to tackle modern threats across on-premises, hybrid, and cloud environments. Microsoft has just published a new Windows Server 2025 Security Advice book that you should download and read. For those responsible for Windows Server security in enterprise environments, this document is a technical roadmap for understanding the depth of protection now embedded in Windows Server. Here's an overview of what you can find in the document: System Hardening and Baselines A detailed breakdown of security baselines in Windows Server 2025 explains how to achieve compliance with standards like the CIS Benchmark and DISA STIG. It walks through deploying the baseline across the system lifecycle, leveraging tools like PowerShell and OSConfig. This section is invaluable for those who need to balance security requirements with system performance and compatibility. Credential Protection and Application Control The document provides a technical overview of how virtualization-based security (VBS) isolates sensitive credentials, along with insights on application control using Windows Defender.Advanced policies for application control are discussed in a way that shows how to tailor security to fit specific organizational needs, especially useful for environments where sensitive data and high trust levels are involved. Silicon-Assisted Security Innovations An explanation of the Secured-Core Server functionality that leverage hardware-based protections like TPM 2.0, Dynamic Root of Trust Measurement (DRTM), and memory integrity checks. The document explains how these components protect against increasingly sophisticated firmware and supply chain attacks. Operational Security and Continuous Monitoring The document demonstrates how to set up continuous monitoring, drift protection, and hybrid infrastructure management. IT professionals will appreciate the step-by-step guidance on implementing real-time security baselines and alerts, which are crucial for environments requiring high availability and fast incident response. Workload Security for Virtual Machines and Containers The document covers security enhancements specifically for virtualized environments.New virtual machine options, such as Secure Boot on Generation 2 VMs and workload monitoring through Microsoft Defender for Cloud, are explained in detail, helping admins understand how these features support integrity and compliance in virtualized setups. Enhanced Network Security with Micro-Segmentation A thorough section on Software Defined Networking (SDN) and Network Security Groups (NSGs) details how to implement micro-segmentation and enforce network isolation policies. This provides a foundation for reducing lateral movement risks. Advanced Compliance and Threat Detection The document covers **Microsoft Sentinel** integration, showing how security alerts from Defender for Cloud can feed into Sentinel for unified threat detection and incident management. Access theWindows Server 2025 Security Advice book.2.3KViews1like0CommentsUsing WSL 2 on Windows Server 2022 to run Linux containers
Windows Subsystem for Linux 2 (WSL 2) is one of the most popular features for developers on Windows 10 and 11. It has recently been made available on Windows Server 2022. With this addition, you can now run Linux containers on WSL 2 on Windows Server 2022 for development and testing purposes.81KViews10likes29CommentsWindows Server Advanced Auditing Policies
We've recently published a series of videos on the advancehttps://www.youtube.com/watch?v=b9juS5RT1lghttps://www.youtube.com/watch?v=b9juS5RT1lgd auditing policies available for tracking activity on Windows Server operating systems.https://www.youtube.com/watch?v=GKc4lo_shUg9.6KViews7likes4Comments