encryption – 4sysops

The report provides information about the encryption status of all managed Windows PCs

Manage BitLocker centrally with AppTec360 EMM

Andrej Radonic Thu, Feb 9 2023 bitlocker, security, deployment, encryption 0

AppTec360 Enterprise Mobility Management (EMM) is not only suitable for managing mobile devices but also PCs. For PCs, the...

Save the BitLocker key to the Microsoft account retrospectively

+

Save and access the BitLocker recovery key in the Microsoft account

Wolfgang Sommergut Tue, Jan 24 2023 bitlocker, security, encryption 0

Microsoft offers several options for storing the recovery key when activating BitLocker. Traditionally, you could print it out or...

Document status of msDS SupportedEncryptionTypes for all accounts

+

Find Active Directory accounts configured for DES and RC4 Kerberos encryption

Wolfgang Sommergut Mon, Dec 19 2022 security, active directory, encryption 2

While DES has long been considered insecure, CVE-2022-37966 accelerates the departure of RC4 for the encryption of Kerberos tickets....

Option to use encrypt email may be missing in Outlook

+

Encrypt email in Outlook with Microsoft 365

Robert Pearman Tue, Dec 6 2022 microsoft 365, cloud computing, security, encryption 1

A support ticket came in recently, in which a client asked whether they needed to upgrade their Microsoft 365...

Opening the properties of the SQL Server instance in SQL Server Configuration Manager

+

Enable TLS on SQL Server

Surender Kumar Fri, Nov 25 2022 security, encryption, database 0

Secure Socket Layer (SSL) and Transport Layer Security (TLS, which builds on the now deprecated SSL protocol) allow you...

Add a recovery password to a BitLocker volume using PowerShell

+

Common BitLocker errors

Surender Kumar Wed, Sep 14 2022 bitlocker, security, powershell, encryption 5

In my previous post, I explained how to enable BitLocker with PowerShell and how to unlock, suspend, resume, and...

+

Enable BitLocker for Windows 10 and Windows 11 with Intune on multiple computers

Kostas Tzouvaras Mon, Sep 12 2022 encryption, bitlocker, security 0

This post explains how you can enable BitLocker for Windows 10 and Windows 11 with Intune on multiple computers...

View various commands offered by the BitLocker PS module

+

Enable BitLocker with PowerShell

Surender Kumar Tue, Sep 6 2022 bitlocker, security, powershell, encryption 4

BitLocker is a volume encryption technology that was first introduced in Windows Vista and Windows Server 2008. Like other...

Selecting the volumes for a backup with Snapshot

+

Restore BitLocker-encrypted drives from image backup

Welf Alberts Thu, May 19 2022 windows, security, encryption 0

In this guide, I'll take a closer look at the process of restoring a BitLocker-encrypted drive from an image...

Creating a new mail flow rule to apply Microsoft Office 365 Message Encryption

+

Encrypt Microsoft 365 email

Brandon Lee Mon, Apr 11 2022 microsoft 365, cloud computing, security, encryption 0

Customers using Exchange Online can take advantage of Microsoft Office 365 Message Encryption (Microsoft OME) as an online service...

They contain the certificate hash and provider details

+

How to migrate Active Directory Certificate Services to SHA-2 and Key Storage Provider

Brandon Lee Mon, Aug 9 2021 security, active directory, encryption 0

Businesses need to migrate from the deprecated SHA-1 to SHA-2 to bolster their cybersecurity posture. They may still be...

Confirming the provider and hash algorithm in AD CS

+

Migrating AD certificate services to SHA-2: Considerations and challenges

Brandon Lee Thu, Aug 5 2021 security, encryption 2

Secure Hash Algorithm (SHA) has been around since the mid-90s and is one of the leading cryptographic hash algorithms...

+

Provide strong Windows authentication using virtual smart cards

Brandon Lee Mon, Aug 2 2021 security, encryption 1

Virtual smart cards provide the benefits of physical smart cards without extra costs or hardware. They are based on...

Require additional authentication at startup

+

Manage encrypted PCs remotely using BitLocker Network Unlock

Brandon Lee Mon, Jul 19 2021 security, encryption 2

TPM+PIN decryption with BitLocker requires physical access to the device when the endpoint boots or resumes from sleep. This...

Testing OpenVPN with traceroute and traceroute6

+

OpenVPN IPv6 and IPv4 configuration

Michael Pietroforte Mon, Mar 1 2021 security, networking, encryption 8

OpenVPN is a free, popular, and powerful VPN solution. In this guide, I describe a minimal IPv6 and IPv4...

+

ManageEngine PAM360: Privileged access management for enterprises

Brandon Lee Tue, Feb 23 2021 security, password, encryption 0

ManageEngine PAM360 is an enterprise solution that allows businesses to gain control over privileged access management in their environment....

Adding public key for a recovery agent in the GPO editor

+

Unlock BitLocker drives using recovery agents

Wolfgang Sommergut Mon, Feb 15 2021 bitlocker, security, encryption 0

If a user can no longer access an encrypted drive, for example because they have forgotten the password, then...

+

Issue certificates for BitLocker recovery agents

Wolfgang Sommergut Mon, Feb 8 2021 bitlocker, security, encryption 0

BitLocker supports several mechanisms to unlock an encrypted drive. These include recovery agents, whose certificate can be used to...

+

Use OpenSSL-based software XCA as offline root certificate authority for AD Certificate Services

Riccardo Bicelli Wed, Jan 27 2021 security, web server, encryption 6

When Active Directory Certificate Services are deployed, Microsoft recommends at least a two-tier infrastructure, comprising a root CA and...

When the GUI option is missing the encryption cannot usually be activated via PowerShell either

+

BitLocker To Go: USB drive cannot be encrypted

Wolfgang Sommergut Mon, Dec 28 2020 bitlocker, security, encryption 1

If you want to encrypt a USB drive with BitLocker To Go, it might happen that the command to...