Stop using SMB1

Hi folks, Ned here again and today’s topic is short and sweet: Stop using SMB1. Stop using SMB1. STOP USING SMB1! In September of 2016,  MS16-114, a security update that prevents denial of service and remote code execution. If you need this security patch, you already have a much bigger problem: you are still running…

226

Deep Dive: The Storage Pool in Storage Spaces Direct

Hi! I’m Cosmos. Follow me on Twitter @cosmosdarwin. Review The storage pool is the collection of physical drives which form the basis of your software-defined storage. Those familiar with Storage Spaces in Windows Server 2012 or 2012R2 will remember that pools took some managing – you had to create and configure them, and then manage…

89

Azure Subscription Migration to CSP

This blog post is outdated and won’t be updated. Instead, review the official Azure EA to CSP and PAYG to CSP migration guides in Azure CSP Documentation. I receive a lot of requests regarding traditional Azure subscription migration to CSP model. I see that CSP becomes more and more popular, and a lot of customers…


Agent Management Pack – Making a SCOM Admin’s life a little easier

  Current Version: 7.0.0.46  9/6/2017   This is a Management Pack that eases the administrative burdens in SCOM.  It allows you to have a lot of handy discovered properties, and includes tasks that allow you to delegate administrative actions to your users.  It also serves as a good example MP on how to write classes,…

55

Windows Server, version 1709 available for download!

What a great day! Back in June, we announced Windows Server was joining the Semi-Annual Channel release cadence to deliver innovation at a faster pace. Two weeks ago at Ignite, we announced Windows Server, version 1709, the first release in this new model, and today you can start using it!


Restrict iOS/Android E-mail to Outlook using Conditional Access for MAM

One of the most common discussions I have with customers is how does an IT Pro ensure that corporate data is only being accessed by approved, managed email applications. Intune Mobile Application Management (MAM) provides a rich set of Data Loss Prevention (DLP) features that ensures no corporate data is leaked outside of the corporately…


Known Lock Screen issues with Creator’s Update (1703)

Updated 9/19/2017 There are a few open issues with Lock screen setting on Windows 10 Enterprise build 1703 (Creator’s Update)   Resolved: The first is with the Group Policy setting “Force a specific default lock screen image” under Computer ConfigurationAdministrative TemplatesControl PanelPersonalization In many cases trying to enabled, change or update this doesn’t appear to…


Excel 2016 opens SharePoint workbooks as read-only

UPDATE – 9/6/17: See solution below When opening a workbook in SharePoint using Excel 2016, it opens as read-only with the following message: We opened this workbook read-only from the server. To edit the workbook, click on the button Edit Workbook This is a design change from Excel 2013, which opened workbooks directly into edit…

47

SMB1 Product Clearinghouse

Hi folks, Ned here again. This blog post contains all products requiring SMB1, where the vendor explicitly states this in their own documentation or communications, or where a customer has reported it and shown some degree of proof without vendor refutation. This list is not complete and you should never treat it as complete; check…


Step-By-Step: Cloud Management Gateway

Introduction ConfigMgr 1610 introduced the Cloud Management Gateway, an Azure based solution to manage clients on internet. The benefit is that you don’t expose your infrastructure on the internet. The Azure VM(s) running behind the Cloud Management Gateway (Azure web service) are managed by Microsoft. At a high level, the clients communicate to an Azure…