Ask Premier Field Engineering (PFE) Platforms

Infrastructure + Security: Noteworthy News (December, 2017-Part 1)

December 4, 2017 by BrandonWilson // 0 Comments

Hello there! Stanislav Belov here to bring you the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Noteworthy News series covers various areas, to include interesting news, announcements, links, tips and tricks from Windows, Azure, and Security worlds on a monthly basis. Enjoy! Microsoft Azure Transforming your VMware environment… Read more

Simple PowerShell Network Capture Tool

December 4, 2017 by BrandonWilson // 0 Comments

Hello all. Jacob Lavender here again for the Ask PFE Platforms team to share with you a little sample tool that I’ve put together to help with performing network captures. This all started when I was attempting to develop an effective method to perform network traces within an air gapped network. My solution had to… Read more

Tags: #proudmicrosoftemployee, Jacob Lavender, Message Analyzer, Network, network analysis, Network Monitor, Network Trace, PowerShell, troubleshooting, Windows, Windows 10, Windows 7, Windows 8, Windows 8.1, Windows Server 2008 R2, Windows Server 2012, windows server 2012 r2, Windows Server 2016

Using WMI to Verify Group Policy

November 27, 2017 by BrandonWilson // 0 Comments

Scenario: My name is Benjamin Morgan and I’m a Platforms PFE. Recently I was working with a customer on a Windows 10 upgrade project and they posed an interesting requirement. They needed to be able to verify that their required group policies were being applied and they needed to be able to run a report… Read more

Tags: #proudmicrosoftemployee, Benjamin Morgan, GPO, Group Policy, PowerShell, RSOP, SCCM, System Center, System Center Configuration Manager, Windows, Windows 10, Windows Management Instrumentation, WMI

Mix and Match WorkFolders, Azure AD, and AAD Application Proxy

November 21, 2017 by BrandonWilson // 0 Comments

Hi, Michele Ferrari here from the Premier Field Engineer-Identity Team in San Francisco here today to do some mix and match about multiple technologies we have within the Azure space. This is the question we’re going to answer today: How can We use an Azure AD cloud Only Identity to access an OnPrem non-cloud resource?… Read more

Tags: #proudmicrosoftemployee, application proxy, Azure, Azure Active Directory, Azure AD, Azure AD application proxy, Michele Ferrari, Windows, Windows 10, WorkFolders

Demystifying Schannel

November 13, 2017November 13, 2017 by BrandonWilson // 5 Comments

Hello all! Nathan Penn here to help with some of those pesky security questions that have lingered for years. Recently I have been fielding several questions on “How do I make sure that I am only using the TLS 1.2 protocol?”, “Can you disable 3DES and the legacy ciphers?”, and the “I just got back… Read more

Tags: #proudmicrosoftemployee, cipher, cipher order, Group Policy, Group Policy Preferences, Nathan Penn, Networking, SChannel, Security, SSL, TLS

Using Group Policy Preferences to Manage the Local Administrator Group

November 6, 2017November 27, 2017 by BrandonWilson // 6 Comments

Hello Everyone! Graeme Bray back with you today to talk about how you can reduce the audit and risk surface within your environment. If you can’t tell, Microsoft has taken a strong stance towards security. In a previous life, I was responsible for providing results for audit requests from multiple sources. One risk (and management… Read more

Tags: #proudmicrosoftemployee, Active Directory, Graeme Bray, Group Membership, Group Policy, Group Policy Preferences, PowerShell, Restricted Groups, Security, Windows, windows server, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, windows server 2012 r2, Windows Server 2016

Infrastructure + Security: Noteworthy News (October, 2017)

October 31, 2017 by BrandonWilson // 0 Comments

Hi there! Stanislav Belov here to bring you the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Noteworthy News series covers various areas, to include interesting news, announcements, links, tips and tricks from Windows, Azure, and Security worlds on a monthly basis. Enjoy! Microsoft Azure Azure mobile app The… Read more

Protecting Domain Administrative Credentials

October 31, 2017 by BrandonWilson // 2 Comments

Hello, Paul Bergson back again with today’s topic of preventing your Domain Administrators and other privileged identities from logging into Tier 1 and Tier 2 devices. Credential theft protection is always an important step in protecting the enterprise. While your administrators are your most trusted employees within the IT enterprise, they may not always use… Read more

Tags: #proudmicrosoftemployee, administrative, credential theft, domain administrator, LAPS, Operations, Paul Bergson, PAW, protect your admin creds!, protection, Security, Windows

Configuring a Hyper-V Host with PowerShell DSC (Part 1)

October 23, 2017October 23, 2017 by Charity Shelbourne // 3 Comments

Hello, my name is Michael Godfrey and I am a Platform’s Premier Field Engineer (PFE) at Microsoft. I have been a Fabric Administrator for the past few years and have made it a habit of building quite a few Hyper-V Hosts. I was always looking for a way to ensure my team and I knew… Read more

Tags: automation, Desired State Configuration, DSC, Failover Cluster, Hyper-v, Michael Godfrey, PowerShell, windows server

Windows PowerShell and DSC on Linux in Microsoft Azure

October 16, 2017October 24, 2017 by BrandonWilson // 2 Comments

Hello everyone! I’m Preston K. Parsard, Platforms PFE and I’d like to talk about running PowerShell and Desired State Configuration (DSC) on Linux in Microsoft Azure. Just in case you haven’t heard yet, PowerShell has been open sourced and released for Linux since 18 August, 2016. More details and other resources for the announcement can… Read more

Tags: #proudmicrosoftemployee, automation, Azure, DSC, Linux, Linux on Azure, PowerShell, Preston Parsard