Windows Authentication HTTP Request Flow in IIS

Hey Folks, This blog is meant to describe what a good, healthy HTTP request flow looks like when using Windows Authentication on IIS. But first, let’s go over some of the basics. Foundation IIS is a user mode application. It sits on top of HTTP.sys, which is the kernel mode driver in the Windows network…


Demystify PKI – Act II: Certificate Logging

This is a quick blog on how to enable certificate logging, as by default this is not enabled in Windows. For reference, this is a multi-part blog on PKI, here are the other entries: Demystify PKI (aka AD Certificate Services) – Act I: Cryptography First, a common falacy is that all things are located in…


Demystify PKI (aka AD Certificate Services) – Act I: Cryptography

Some things are just a lot to digest, and so I thought it may be useful to the ditial world to kind of break down and demystify some of the key concepts. This is part of a multi-part blog, as it’s a lot to write at once. The intent here isn’t to write a comprehensive…


Retire Those Old Legacy Protocols

Hello Paul Bergson back again, and I wanted to bring up another security topic. There has been a lot of work by enterprises to protect their infrastructure with patching and server hardening, but one area that is often overlooked when it comes to credential theft and that is legacy protocol retirement. These legacy protocols were…


Изменения в обслуживании и поддержке Office и Windows

Авторы этой статьи — Бернардо Кальдас (Bernardo Caldas), главный менеджер группы Windows, и Джаред Спатаро (Jared Spataro), главный менеджер группы Office. Создание безопасной современной среды для эффективной работы — приоритетная задача для многих наших коммерческих клиентов, и мы делаем все, чтобы помочь им решить ее. В прошлом июле мы сделали важный шаг в этом направлении, выпустив Microsoft 365 — новый…


Unable To Ping Windows Server

You have just deployed a shiny new Windows 2012 R2 member server, and joined it to the domain.  After the server has restarted you try and ping it from one of the other domain machines, but ping is dropped.   You check the Network Location Awareness, as you have been burnt by that before, but that…


Infrastructure + Security: Noteworthy News (January, 2018)

Hello there! Stanislav Belov here to bring you the next issue of the Infrastructure + Security: Noteworthy News series!   As a reminder, the Noteworthy News series covers various areas, to include interesting news, announcements, links, tips and tricks from Windows, Azure, and Security worlds on a monthly basis. Enjoy!  Microsoft Azure Start/Stop VMs during off-hours…

3

Microsoft 365 Business Updates

Be sure to join the January 23 Modern Workplace: Windows & Devices Partner Community Call to learn more about Microsoft 365 Business and the resources, programs, and offers available to help you drive Microsoft 365 Business conversations with your customers. Challenges of the Modern Workplace Customers are wrestling with the idea of providing a productive…


Single Host Shielded VMs Lab/PoC

Hi, Matthew Walker again. Virtualization and High Availability PFE. Recently I worked with a few of my co-workers to present a lab on building out Shielded VMs and I thought this would be useful for those of you out there wanting to test this out in a lab environment. First a little backstory on Shielded…