Category Archives: Windows - Page 2

Determine requirements and scenarios for implementing Shielded VMs

Determine requirements and scenarios for implementing Shielded VMs

In this post we’ll determine requirements and scenarios for implementing shielded VMs. In a traditional environment where virtual machines run on a hypervisor host, it’s possible for the administrator of the virtualization layer to get full access to the virtual machines.

For example if you buy a VPS from a provider, you are given access to the guest operating system. It is technically feasible for a malicious or compromised administrator account to gain access to the virtual machine.

This is where shielded VMs in Windows Server 2016 come in to save the day.

Read more »

Configure Firewall Rules for Multiple Profiles Using Group Policy

Configure Firewall Rules for Mulriple Profiles Using Group Policy

Rather than manually configuring Windows Firewall rules individually on each server, we can instead configure firewall rules for multiple profiles using group policy, allowing us to roll them out to a group of computers at once.

In this example we’ll be working with Windows Server 2016, however the steps are very similar in previous versions of the Windows operating system.

Read more »

Implement Policy Changes and Staging with Dynamic Access Control

Implement Policy Changes and Staging

This post will show you how to implement policy changes and staging with regards to auditing using Dynamic Access Control (DAC). This allows us to stage and test a central access policy before actually using it in production. This is a useful feature, as implementing DAC can be complex to work with.

Read more »

Install PowerShell 5 in Windows Server 2008 R2

Download WMF 5.1 to a Windows Server 2008 R2 System

Windows Management Framework (WMF) 5.1 contains PowerShell 5.1. By default Windows Server 2008 R2 SP1 runs the older PowerShell version 2. By downloading and installing WMF 5.1 to a Windows Server 2008 R2 system, we can upgrade it to PowerShell version 5.1.

Read more »

Implement Work Folders in Windows Server 2016

Implement work folders

In this post I’ll show you how to implement Work Folders with a Windows Server 2016 file server and Windows 10 client. Work Folders allow a user to access their files from an internal file server remotely over the Internet.

Read more »

Implement BitLocker Recovery Process using self-recovery and recovery password retrieval solutions

Implement BitLocker Recovery Process using self-recovery and recovery password retrieval solutions

What happens if you forget your BitLocker PIN or lose the key? We can implement BitLocker recovery process using self-recovery and recovery password retrieval solutions in Windows Server 2016.

There are a few different methods of recovering BitLocker which we’ll cover here.

Read more »

Configure SMB signing via Group Policy

Configure SMB Signing via Group Policy

The Server Message Block (SMB) protocol is used to provide file and print sharing in a Microsoft based network. To help detect man in the middle (MITM) attacks that may modify SMB traffic in transit, we can configure SMB signing via group policy. By digitally signing SMB packets the client and server can confirm where they originated from as well as their authenticity.

SMB packet signing is available in all supported versions of Windows. Microsoft also note that depending on factors such as the SMB version, file sizes, and specific hardware in use, SMB packet signing can degrade the performance of SMB, which is to be expected as we’re signing every packet that goes across the network, which adds overhead.

Read more »

Secure DNS Traffic Using DNSSEC and DNS Policies

Secure DNS Traffic Using DNSSEC and DNS Policies

In Windows Server 2016 we can secure DNS traffic using DNSSEC and DNS policies. DNSSEC allows a client to validate DNS responses, as by default DNS was not designed to be a secure protocol. DNSSEC allows a client to confirm that the information which has been returned from a DNS server has actually come from the correct and trusted DNS server without modification.

DNSSEC, which stands for Domain Name System Security Extensions, was added to help secure the existing DNS protocol. This guide will walk you through configuring DNSSEC in a Windows Server 2016 environment.

Read more »

Implement Auditing using Windows PowerShell

Implement Auditing using Windows PowerShell

We can implement auditing using Windows PowerShell with the Get-Acl and Set-Acl cmdlets. These allow us to view and modify the auditing options of a file or folder in Windows. While this can also be done through the graphical user interface, using PowerShell allows us to script such actions, as well as some extra functionality such as copying the auditing settings from one object to another.

Read more »

Enable and configure Module, Script Block, and Transcription logging in Windows PowerShell

Enable and configure Module, Script Block, and Transcription logging in Windows PowerShell

This post will show you how to enable and configure module, script block, and transcription logging in Windows PowerShell. Module logging allows you to specify the PowerShell modules that you want to log. Script block stores PowerShell commands that are run without the output, while transcription logging records the PowerShell commands that are run along with the full result of the command.

Read more »