Select Page
AAD Dynamic Groups, Controlled MFA Registration, Intune + Admin Templates and AIP Log Analytics

AAD Dynamic Groups, Controlled MFA Registration, Intune + Admin Templates and AIP Log Analytics

Hi folks – this morning, I’m taking a little side-trip away from my series about the modern Microsoft productivity platform for a brief review of a handful of new or lesser-known gems. I’m going to touch on four capabilities, all ... continue reading
Deploy Custom GPO via Microsoft Intune

Deploy Custom GPO via Microsoft Intune

First published on TECHNET on May 30, 2018Hello! My name is Anil Abraham, and I am a Senior PFE with the Windows and Devices team, in the UK.Modern management for Windows 10 is a hot topic and with Autopilot, Azure ... continue reading

DSC Planning Update – June 2019

It has been almost a year since the last DSC Planning update. There has been a lot going on, many decisions being made, and it just didn’t make sense to post earlier in this calendar year. In this post we ... continue reading
Azure Policy Guest Configuration – Service

Azure Policy Guest Configuration – Service

This post builds upon the introduction published earlier to the PowerShell blog. In this post we are going to explore the Azure Policy Guest Configuration service. The full documentation for this service is available at the following short url. https://aka.ms/gcpol ... continue reading
Step-By-Step: Implementing Azure AD Password Protection On-Premises

Step-By-Step: Implementing Azure AD Password Protection On-Premises

I travel a lot in Italy, and many times I see multiple customers that are asking for the same requests. One request is the possibility to block some specific passwords in Active Directory. Unfortunately too many users have BAD habits ... continue reading

Security baseline (FINAL) for Windows 10 v1903 and Windows Server v1903

Microsoft is pleased to announce the final release of the security configuration baseline settings for Windows 10 version 1903 (a.k.a., “19H1”), and for Windows Server version 1903. Download the content from the Microsoft Security Compliance Toolkit (click Download and select ... continue reading
Image of the Windows Defender Security Center.

Step 9. Protect your OS: top 10 actions to secure your environment

In “Step 9. Protect your OS” of the Top 10 actions to secure your environment blog series, we provide resources to help you configure Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) to defend your Windows, macOS, Linux, iOS, and ... continue reading
SCCM on Windows Server 2016: The Defender Gotcha

SCCM on Windows Server 2016: The Defender Gotcha

First published on TECHNET on Dec 26, 2018Hello! My name is Todd Linke, and I am a Premier Field Engineer at Microsoft where I specialize in System Center Configuration Manager.For those of you that may not be aware, SCCM generates ... continue reading
SCCM: "The encryption type requested is not supported by the KDC" Error When Running Reports

SCCM: “The encryption type requested is not supported by the KDC” Error When Running Reports

First published on TECHNET on Jan 29, 2019 Introduction Hello, my name is Richard McIver and I'm a Premier Field Engineer with Microsoft specializing in System Center Configuration Manager.I was recently working with a customer who suddenly started receiving a ... continue reading
Securing Applications with Least Privileged Service Accounts

Securing Applications with Least Privileged Service Accounts

First published on TECHNET on Feb 05, 2019Hello all, Nathan Penn here to shed some light on how I identify the most restrictive settings for applications and their associated service accounts, while keeping things functioning. When security is paramount (which ... continue reading