Replication Hurricanes: Why Restricted Groups are a No-Go for Domain Based Groups

Hi everyone! My name is Tim Medina, Premier Field Engineer, and today we are going to take a brief look at GPOs with a focus on restricted groups. More importantly, we will discuss how, if used in an unsupported manner, you can cause your very own replication hurricane. But, before we get into that let’s… Read more

Hey Dude, Where’s My Winlogon.log?

Hi this is Michael from the PMC PFE Team, I recently helped a customer during the implementation of their Windows Server 2016 systems. When checking the Event viewer, we spotted a well-known Event ID: Log Name:      Application Source:        SceCli Date:          08.03.2017 17:49:21 Event ID:      1202 Task Category: None Level:         Warning Keywords:      Classic User:          N/A Computer:     … Read more

Using PowerShell Runspaces to Generate GPO Reports

Stephen Mathews here to talk to you about generating Group Policy Object reports quickly and efficiently. I had a customer ask me if there was an easy way to find all the RunOnce GUIDs in their GPOs. The customer was concerned that they would generate duplicate GUIDs in their deployment of Group Policy Preferences. Yes,… Read more

Who broke my user GPOs?

Hi folks. From Orlando, Florida, Sean Greenbaum here with some news about a recent set of security patches released on June 14, 2016. If you’re reading this, chances are you are having group policy issues, or you heard this patch will cause you to have issues and you want to get ahead of it. So,… Read more

Does your win 8.1 /2012 R2/win10 logon hang after a password change?

********** UPDATE ********** This is now fixed in the following updates: For Windows 8.1, 2012 R2, 2012 install:  KB3132080 Logon freezes after you reset your password in Windows 8.1, or Stop error 0x1000007e in Windows Server 2012 R2: For Windows 10 TH2 build 1511 install:  KB3135173 Cumulative update for Windows 10 Version 1511: February… Read more

Microsoft InTune for the Old-School GPO Admin

Happy New Year, people!  Let me welcome you to the first post of 2016 for the Ask PFE Platforms blog. I have a history of posting on our blog around the holidays/New Year's and 2016 is no different. Last year, I did a "New Year's" post about Azure AD for the old-school AD admin: In keeping with… Read more

Guidance on Deployment of MS15-011 and MS15-014

Hi, my name is Keith Brewer and many of you will know of me from my other Active Directory related posts. A few folks have recently approached me about the recent security updates (The other week we released MS15-011 & MS15-014). Most of the questions were general in nature but a few were specifically in… Read more

Mailbag: Return of the Mailbag Returns

Hey y’all, Mark and Tom back here with the return of the mailbag returns. Give yourself 5 internet points if you get that Simpsons reference. Before today our mailbag posts were very random and we are trying to get on a more regular mailbag posting schedule. The key word in that sentence would be trying… Read more

Becoming an WPA Xpert Part 11: Troubleshooting Long Group Policy Processing

Hey Folks, Though I’ve blogged before here I have been a bit rude and never properly introduced myself. Hi, I am James Klepikow, a Senior Premier Field Engineer with Microsoft. Nice to meet all of you. One of the many issues we troubleshoot as Field Engineers is slow boot up time. As you can see… Read more

Bitlocker PIN on Surface Pro 3 and Other Tablets

Hey guys, here’s Joao Botto again. You may already know that I spend most of my time helping customers be safe and productive with Windows 8.1. Some of you may also have seen my name associated with Device Deployment – specifically Surface Pro. So here’s a post that discusses pre-boot recommendations for encrypted tablets. “To… Read more