Tag Archive for: encryption

They contain the certificate hash and provider details

How to migrate Active Directory Certificate Services to SHA-2 and Key Storage Provider

Brandon Lee Mon, Aug 9 2021 active directory, encryption, security 0

Businesses need to migrate from the deprecated SHA-1 to SHA-2 to bolster their cybersecurity posture. They may still be...

Confirming the provider and hash algorithm in AD CS

Migrating AD certificate services to SHA-2: Considerations and challenges

Brandon Lee Thu, Aug 5 2021 encryption, security 2

Secure Hash Algorithm (SHA) has been around since the mid-90s and is one of the leading cryptographic hash algorithms...

Provide strong Windows authentication using virtual smart cards

Brandon Lee Mon, Aug 2 2021 encryption, security 0

Virtual smart cards provide the benefits of physical smart cards without extra costs or hardware. They are based on...

Require additional authentication at startup

Manage encrypted PCs remotely using BitLocker Network Unlock

Brandon Lee Mon, Jul 19 2021 encryption, security 2

TPM+PIN decryption with BitLocker requires physical access to the device when the endpoint boots or resumes from sleep. This...

Testing OpenVPN with traceroute and traceroute6

OpenVPN IPv6 and IPv4 configuration

Michael Pietroforte Mon, Mar 1 2021 encryption, networking, security 8

OpenVPN is a free, popular, and powerful VPN solution. In this guide, I describe a minimal IPv6 and IPv4...

ManageEngine PAM360: Privileged access management for enterprises

Brandon Lee Tue, Feb 23 2021 encryption, password, security 0

ManageEngine PAM360 is an enterprise solution that allows businesses to gain control over privileged access management in their environment....

Adding public key for a recovery agent in the GPO editor

Unlock BitLocker drives using recovery agents

Wolfgang Sommergut Mon, Feb 15 2021 bitlocker, encryption, security 0

If a user can no longer access an encrypted drive, for example because they have forgotten the password, then...

Issue certificates for BitLocker recovery agents

Wolfgang Sommergut Mon, Feb 8 2021 bitlocker, encryption, security 0

BitLocker supports several mechanisms to unlock an encrypted drive. These include recovery agents, whose certificate can be used to...

Use OpenSSL-based software XCA as offline root certificate authority for AD Certificate Services

Riccardo Bicelli Wed, Jan 27 2021 encryption, security, web server 6

When Active Directory Certificate Services are deployed, Microsoft recommends at least a two-tier infrastructure, comprising a root CA and...

When the GUI option is missing the encryption cannot usually be activated via PowerShell either

BitLocker To Go: USB drive cannot be encrypted

Wolfgang Sommergut Mon, Dec 28 2020 bitlocker, encryption, security 1

If you want to encrypt a USB drive with BitLocker To Go, it might happen that the command to...

By default, users can encrypt USB drives themselves with BitLocker

BitLocker To Go: Configure USB drive encryption with Group Policy

Wolfgang Sommergut Mon, Dec 21 2020 bitlocker, encryption, security 5

If companies want to prevent data leakage, then they should pay special attention to removable drives. If a USB...

Document encryption is added to the application policies

Issuing certificates for document encryption (Cryptographic Message Syntax)

Wolfgang Sommergut Thu, Nov 21 2019 encryption, security, windows 10 0

Beginning with version 5, PowerShell supports the IETF standard Cryptographic Message Syntax (CMS) to encrypt data or log entries....

Selecting the template to be issued by the certificate authority

Solution for "The requested certificate template is not supported by this CA"

Wolfgang Sommergut Wed, Nov 20 2019 encryption, security 0

Sometimes you need to create your own template for requesting certificates from a Windows CA, e.g., for encrypting or...

Specops Key Recovery: Self-service for unlocking BitLocker-encrypted devices

Robert Pearman Thu, Oct 24 2019 encryption, security 0

Specops Key Recovery (SKR) is a self-service solution for unlocking devices encrypted with BitLocker or Symantec Endpoint Encryption in...

Displaying the thumbprint of the new certificate with PowerShell

Install an SSL certificate in Windows Admin Center

Wolfgang Sommergut Tue, Sep 17 2019 encryption, security 7

If you install Windows Admin Center (WAC) in gateway mode, the browser should communicate with the server via a...

Using the default website as an example to check the hostname in the HTTP bindings

Issue certificates for IIS and Exchange with Let's Encrypt

Roland Eich Wed, Mar 20 2019 encryption, security, web server 1

SSL connections are now standard for publicly available websites, and the same should apply to Microsoft Exchange. Let's Encrypt operates...

Find BitLocker recovery passwords in Active Directory with PowerShell

Robert Pearman Thu, Feb 28 2019 active directory, encryption, powershell, security 1

The PowerShell script I discuss in this post allows you to search and find BitLocker recovery passwords stored in...

Viewing 1 - 7 of 7 items

Lorenzo commented on Track Windows user login history 3 hours, 45 minutes ago

Hello, I am trying the script but I am having an error:

WARNING: Cannot convert 'System.Object[]' to the type 'System.DateTime' required by parameter 'End'. Specified method is not supported.

Someone knwo the way to fix it?

0
Wolfgang Sommergut wrote a new post, Install Windows 11 in a virtual machine 6 hours, 55 minutes ago

The new hardware requirements for Windows 11 apply not only to physical devices but to virtual machines as well. The advantage of virtual machines here is that PCs without a physical TPM can install a virtual one instead. Other requirements, such as Secure Boot, can also be met in a VM

0
Heba Hussein commented on Disable PowerShell remoting: Disable-PSRemoting, WinRM, listener, firewall, LocalAccountTokenFilterPolicy 7 hours, 57 minutes ago

I have been suffering from neighbors keep hacking our dell notebooks and network and i start fear they hack any online purchases or accounts plus no privacy they even magify screens even when my daughters studding doing her assignments online
I don't know what is the issue no matter disable WPS change all password continues and use complex ones for page and connection all did not work use monitor and keep ending process disable remote stuff in fire wall some how they still could log in and even when i disable phone option i don't use i find it again in process
i reach to article when i was trying to know was certain process risk or not and i am happy i reach here thank you a lot for haring
just small thing
i could not execute below denied though i am admin i have single account and i notice though i am the admin some things i try to ends denied and some options not there for me to edit on is this related to central net in country or net company or this because hikers managed to disable some options for me and took control?

Set-ItemProperty -Path HKLM:SOFTWAREMicrosoftWindowsCurrentVersionpoliciessystem -Name LocalAccountTokenFilterPolicy -Value 0

why power shell needed in general away from remote excucution

0
Paolo Maffezzoli posted an update 13 hours ago

Microsoft readies Windows 10 21H2 for public rollout

Microsoft has christened this years fall update as the Windows 10 version 21H2. At the moment, its only available for seekers in the Release Preview Channel and Beta Channel for unsupported Windows 11 PCs, meaning those who check for updates manually will be offered the feature update.

0
Paolo Maffezzoli posted an update 13 hours ago

A new Microsoft Store: What does it mean for you and your business? A lot, actually - TechRepublic

Microsoft is launching a new version of its Store with Windows 11. There are lots of changes for consumers and businesses.

0
Paolo Maffezzoli posted an update 13 hours, 1 minute ago

Microsoft announces big updates for Teams Phones and Webinars - OnMSFT.com

Microsoft announced this morning its bringing a slew of new capabilities to Teams Phones, which should empower employees to collaborate more seamlessly in a

0
Paolo Maffezzoli posted an update 13 hours, 2 minutes ago

Windows 10: Microsoft fixes issues with Sept. update using KIR | Born's Tech and Windows World

In September 2021 updates for Windows 10 could cause issues: Some applications no longer started or could no longer access their data. The cause is a problem in the Microsoft Exploit Protection Export Address Filtering (EAF) function.

0