Disable SMBv1 in your environments with Configuration Manager Compliance Settings

NOTE: I have updated this blog to remove SMB1 LanmanServer from 2012/8+.   There has been lots of buzz over the recent ransomware attacks. One of the mitigations to keep the attack from spreading is disabling SMBv1 on all your Windows workstation and servers. One of the easy ways to deploy this out, while also…

30

For Exchange 2010, 2013, and 2016 do this before calling Microsoft

Hi Everybody! I wanted to post some steps that might save you some time and money. Although all of the below settings are published on Microsoft somewhere, they aren’t all together or always specifically called out to assist in creating a more efficient and stable Exchange environment. I have noted where applicable if it is…

29

Disable Office 365 Groups Creation: Redux

Update: I posted roll-back steps at the bottom of the article. Several months ago, I wrote a blog on Disabling Office 365 Groups.  It seems as though we couldn’t leave well enough alone.  Such is a price of progress. I got a new laptop a few weeks ago, and then found myself in the position of…


Deploying a kiosk using Windows Autopilot

In today’s Tech Community blog, we talk about a variety of new Autopilot features.  For the Autopilot self-deploying mode, I thought it would be useful to get into more of the specifics of how to deploy a kiosk with Autopilot, where the end result is a device that is configured to automatically log in and…


Issue with July Updates for Windows on an Exchange Server

The Exchange team is aware of issues with the Windows Operating System updates published July 10th, 2018 causing Exchange to not function correctly. The Windows servicing team has advised us that they will be releasing updates to the affected packages. We encourage Exchange customers to delay applying the July 10th updates, including the security updates…


Released: June 2018 Quarterly Exchange Updates

The latest cumulative updates for Exchange Server 2016 and Exchange Server 2013 are now available on the download center. An update rollup for Exchange Server 2010 is also available. The updates released today include important changes to the pre-requisites required to install Exchange Server. The installation packages include fixes to customer reported issues, all previously…


Unable to RDP to Virtual Machine: CredSSP Encryption Oracle Remediation

**********************************************************************************UPDATE**************************************************************************************** We have published an official KB on this issue. Please see the following: https://support.microsoft.com/en-us/help/4295591 *********************************************************************************************************************************************************************************** Overview With the release of the March 2018 Security bulletin, there was a fix that addressed a CredSSP, “Remote Code Execution” vulnerability (CVE-2018-0886) which could impact RDP connections. The vulnerability was discovered to which the exploits observed were: Targets receive…


Microsoft Teams for Surface Hub (Preview)

Long awaited, the Microsoft Teams Surface Hub app is now available in preview for Surface Hubs that are members of the Insider program. You must be on the latest Insider update for the app to become available:   Surface Hubs that enter the Insider program must not be used in Production environments.  To leave the…

13

PowerShell Random Password Generator

On a project earlier this year, I had to create random passwords for user accounts as part of a provisioning tool.  Perpetually trying to find the fastest way to do something, I came up with a one-liner that you can use to create a random text string from the following ASCII printable characters: !”#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[]^_abcdefghijklmnopqrstuvwxyz{|}~0123456789 To…

12