encryption – 4sysops

Opening the properties of the SQL Server instance in SQL Server Configuration Manager

Enable TLS on SQL Server

Surender Kumar Fri, Nov 25 2022 database, encryption, security 0

Secure Socket Layer (SSL) and Transport Layer Security (TLS, which builds on the now deprecated SSL protocol) allow you...

Add a recovery password to a BitLocker volume using PowerShell

+

Common BitLocker errors

Surender Kumar Wed, Sep 14 2022 bitlocker, encryption, powershell, security 5

In my previous post, I explained how to enable BitLocker with PowerShell and how to unlock, suspend, resume, and...

+

Enable BitLocker for Windows 10 and Windows 11 with Intune on multiple computers

Kostas Tzouvaras Mon, Sep 12 2022 bitlocker, encryption, security 0

This post explains how you can enable BitLocker for Windows 10 and Windows 11 with Intune on multiple computers...

View various commands offered by the BitLocker PS module

+

Enable BitLocker with PowerShell

Surender Kumar Tue, Sep 6 2022 bitlocker, encryption, powershell, security 0

BitLocker is a volume encryption technology that was first introduced in Windows Vista and Windows Server 2008. Like other...

Selecting the volumes for a backup with Snapshot

+

Restore BitLocker-encrypted drives from image backup

Welf Alberts Thu, May 19 2022 encryption, security, windows 0

In this guide, I'll take a closer look at the process of restoring a BitLocker-encrypted drive from an image...

Creating a new mail flow rule to apply Microsoft Office 365 Message Encryption

+

Encrypt Microsoft 365 email

Brandon Lee Mon, Apr 11 2022 cloud computing, encryption, microsoft 365, security 0

Customers using Exchange Online can take advantage of Microsoft Office 365 Message Encryption (Microsoft OME) as an online service...

They contain the certificate hash and provider details

+

How to migrate Active Directory Certificate Services to SHA-2 and Key Storage Provider

Brandon Lee Mon, Aug 9 2021 active directory, encryption, security 0

Businesses need to migrate from the deprecated SHA-1 to SHA-2 to bolster their cybersecurity posture. They may still be...

Confirming the provider and hash algorithm in AD CS

+

Migrating AD certificate services to SHA-2: Considerations and challenges

Brandon Lee Thu, Aug 5 2021 encryption, security 2

Secure Hash Algorithm (SHA) has been around since the mid-90s and is one of the leading cryptographic hash algorithms...

+

Provide strong Windows authentication using virtual smart cards

Brandon Lee Mon, Aug 2 2021 encryption, security 1

Virtual smart cards provide the benefits of physical smart cards without extra costs or hardware. They are based on...

Require additional authentication at startup

+

Manage encrypted PCs remotely using BitLocker Network Unlock

Brandon Lee Mon, Jul 19 2021 encryption, security 2

TPM+PIN decryption with BitLocker requires physical access to the device when the endpoint boots or resumes from sleep. This...

Testing OpenVPN with traceroute and traceroute6

+

OpenVPN IPv6 and IPv4 configuration

Michael Pietroforte Mon, Mar 1 2021 encryption, networking, security 8

OpenVPN is a free, popular, and powerful VPN solution. In this guide, I describe a minimal IPv6 and IPv4...

+

ManageEngine PAM360: Privileged access management for enterprises

Brandon Lee Tue, Feb 23 2021 encryption, password, security 0

ManageEngine PAM360 is an enterprise solution that allows businesses to gain control over privileged access management in their environment....

Adding public key for a recovery agent in the GPO editor

+

Unlock BitLocker drives using recovery agents

Wolfgang Sommergut Mon, Feb 15 2021 bitlocker, encryption, security 0

If a user can no longer access an encrypted drive, for example because they have forgotten the password, then...

+

Issue certificates for BitLocker recovery agents

Wolfgang Sommergut Mon, Feb 8 2021 bitlocker, encryption, security 0

BitLocker supports several mechanisms to unlock an encrypted drive. These include recovery agents, whose certificate can be used to...

+

Use OpenSSL-based software XCA as offline root certificate authority for AD Certificate Services

Riccardo Bicelli Wed, Jan 27 2021 encryption, security, web server 6

When Active Directory Certificate Services are deployed, Microsoft recommends at least a two-tier infrastructure, comprising a root CA and...

When the GUI option is missing the encryption cannot usually be activated via PowerShell either

+

BitLocker To Go: USB drive cannot be encrypted

Wolfgang Sommergut Mon, Dec 28 2020 bitlocker, encryption, security 1

If you want to encrypt a USB drive with BitLocker To Go, it might happen that the command to...

By default, users can encrypt USB drives themselves with BitLocker

+

BitLocker To Go: Configure USB drive encryption with Group Policy

Wolfgang Sommergut Mon, Dec 21 2020 bitlocker, encryption, security 7

If companies want to prevent data leakage, then they should pay special attention to removable drives. If a USB...

+

Encrypt in AWS using the Key Management Service (KMS)

Graham Beer Wed, Oct 28 2020 AWS, cloud computing, encryption, security 0

The AWS Key Management Service (KMS) allows you to create and manage cryptographic keys that you can use across...

GPO setting to backup recovery keys for system drives in Active Directory

+

Store and Retrieve BitLocker Recovery Keys from Active Directory

Roland Eich Fri, Jan 17 2020 active directory, encryption, group policy, security 1

Encrypting drives with BitLocker is essential for protecting Windows notebooks against theft and misuse of data. However, if users...

Simple application of Protect CmsMessage and Unprotect CmsMessage

+

Encrypt event logs and files with PowerShell and group policies

Wolfgang Sommergut Mon, Nov 25 2019 encryption, group policy, log management, powershell, security 3

A new feature of Windows 10 and Server 2016 is Protected Event Logging, which encrypts sensitive data in the...