Select Page

Why you should not enable Credential Guard on Domain Controllers?

First published on TECHNET on Feb 21, 2017 Credential guard protects the credential derivatives like NTLM hash and Kerberos tickets; this TechNet article has a very detailed explanation as well as deployment guidelines. There was a recent change in this ... continue reading

Use Windows Server 2016 to secure a jump server

First published on TECHNET on Feb 02, 2017 When talking to customers about the security features in Windows Server 2016, a common question keeps coming up, how do I secure my jump server? Recently, I worked with a Microsoft internal ... continue reading
Host Guardian Service - AD-based vs. TPM-based attestation

Host Guardian Service – AD-based vs. TPM-based attestation

First published on TECHNET on Aug 16, 2016 [This post is authored by Dean Wells, Principal Program Manager for the Windows Server Security Product Team] Overview The Host Guardian Service (HGS) is a new role in Windows Server 2016 that ... continue reading
How to Configure an Alias for a Clustered SMB Share with Windows Server 2012

How to Configure an Alias for a Clustered SMB Share with Windows Server 2012

First published on MSDN on Apr 08, 2012 Starting with Windows Server 2008, SMB file shares on a Failover Cluster are scoped so that they are only accessible by valid UNC paths associated with the network name they are bound ... continue reading

Troubleshooting Service Manager work item (Incident, Change Request, Service Request) status stuck on “New”

First published on TECHNET on Jul 05, 2017 Any time we see newly created work items stuck with a “New” status, it generally means that the Service Manager workflows are not processing or are processing slowly. Monitoring the “Minutes behind” ... continue reading
Configuration Manager: ‘The encryption type requested is not supported by the KDC’ Error When Running Reports

Configuration Manager: ‘The encryption type requested is not supported by the KDC’ Error When Running Reports

Introduction Hello, my name is Richard McIver and I’m a Premier Field Engineer with Microsoft specializing in System Center Configuration Manager. I was recently working with a customer who suddenly started receiving a strange KDC error when attempting to run ... continue reading
Tick Tock: Time to Dive Deep!

Tick Tock: Time to Dive Deep!

Looking at the Windows Time process and configuration there and back again As last we met, I am Tim Medina Sr PFE with Microsoft and we are coming to a conclusion of our three-part journey in time. First we took ... continue reading
image

Upgrading and what is new in Windows Server 2019 Clustering #winserv #RunWS2019 #WindowsServer2019

This blog post is the first of a series on Windows Server 2019. #MSIgnite is coming and there will be a lot of new features coming. So in preparation I’ll show you what is changed and how to build things ... continue reading
Building Zero Trust networks with Microsoft 365

Building Zero Trust networks with Microsoft 365

The traditional perimeter-based network defense is obsolete. Perimeter-based networks operate on the assumption that all systems within a network can be trusted. However, todays increasingly mobile workforce, the migration towards public cloud services, and the adoption of Bring Your Own ... continue reading
Are My RDP Connections Really Secured by a Certificate?

Are My RDP Connections Really Secured by a Certificate?

Hello everyone! Tim Beasley – Platforms PFE coming at you live from the funky fresh jam known as LAS VEGAS! That’s right people! I’m having a blast by the pool at the MGM Grand and loving life!! …writing a blog ... continue reading