Posted: June 9, 2017 | | Tags: Baseline, Compliance, DCM, SCCM, Security, Windows 10
There are numerous of ways to measure update compliance in an enterprise. Some prefer to just compare the compliance of a Software Update Group against a collection. The issue I’ve found with this is that when you release updates the compliance falls down to 0%…
Posted: June 9, 2017 | | Tags: Baseline, BitLocker, Credential Guard, DCM, PowerShell, SCCM, SCCM 2016, Security, TPM, Windows 10
This article focuses on the scenario where the laptop/desktop has been lost or stolen, and how to make sure that the local data/credentials are secured/encrypted.
Updated: January 9, 2020 | | Tags: Active Directory, Code, Password, PowerShell, Script, Security
I created a powershell-script which will reset the password of all users in a specific Organizational Unit.
I prefer to set unique high-end passwords for all users. If you prefer a more ‘user friendly’ approach simply…
Updated: May 17, 2016 | | Tags: Active Directory, File and Storage Services, PowerShell, Script, Security
The script will look through the a selected Organization Unit and verify that all users have a Home Directory set, and that it has the appropriate NTFS permissions.
Previously all users had Full-permissions on their home folder, which led to the users resetting permissions and removing unwanted permissions (Backup or Admin accounts) to their “private” stuff.
Updated: May 17, 2016 | | Tags: Active Directory, GPO, Security, Troubleshoot, Windows Server 2008, Windows Server 2012
I noticed that a couple of Domain Controllers started reporting Warning-messages. It turns out that one or more clients have been using LDAP binds that are performed on a clear text (non-SSL/TLS-encrypted) connection.
Updated: March 5, 2016 | | Tags: Deployment, Java, Script, Security, Windows 7, Windows 8, WMI, WMIC
I received an inquiry from one of my mid-size (100-200 users) customers today. They’ve been planning on implementing a new online service which requires the latest Java version.
The clients have a large quantity of outdated versions of Java, which needed to be uninstalled before we deployed the newest version.
They are currently running Windows 7 and Windows 8, so somewhat modern operative systems.
Updated: March 27, 2016 | | Tags: Antivirus, Deployment, Fix, Hack, NOD32, Security, Troubleshoot
I was faced with an issue regarding NOD32 today. A couple of clients had an old (undocumented) configuration of their antivirus.
As it turned out the clients had “Protected setup” which means you cannot access the settings, or un/reinstall the program without a specific password. It also happened to not be set up to talk to the appropriate “Remote Administrations-server”.
Updated: March 5, 2016 | | Tags: Code, PowerShell, Script, Security, Troubleshoot, WiFi, Windows 7, Windows 8, WLAN
We’ve all been there, wireless passwords tend get lost.
There are several tools to retrieve the missing information, but I strongly believe that the less stuff you download from the web, the safer you are. So why not use the built in functions instead?
Posted: May 28, 2014 | | Tags: File and Storage Services, GPO, Permissions, Security
A customer of ours had problems with an installation.
We started troubleshooting and noticed that the installation did not run in Elevated Mode, but wanted to put files in a folder which by default it does not grant regular users the ability to add or modify files.
Updated: October 21, 2014 | | Tags: Calendar, Cloud, Code, Office 365, Outlook, PowerShell, Script, Security
Per default the calendars of shared mailboxes in Office 364 have “FreeBusyTimeOnly” permissions applied.
You could create a new sharing policy and change the applied policy on those accounts.
I however chose to just change the sharing permissions on the shared calendar.