In this post I’ll show you how to implement Work Folders with a Windows Server 2016 file server and Windows 10 client. Work Folders allow a user to access their files from an internal file server remotely over the Internet.
Category Archives: Windows - Page 2
Implement BitLocker Recovery Process using self-recovery and recovery password retrieval solutions
Posted by Jarrod
on August 2, 2017
No comments
What happens if you forget your BitLocker PIN or lose the key? We can implement BitLocker recovery process using self-recovery and recovery password retrieval solutions in Windows Server 2016.
There are a few different methods of recovering BitLocker which we’ll cover here.
Configure SMB signing via Group Policy
Posted by Jarrod
on July 28, 2017
No comments
The Server Message Block (SMB) protocol is used to provide file and print sharing in a Microsoft based network. To help detect man in the middle (MITM) attacks that may modify SMB traffic in transit, we can configure SMB signing via group policy. By digitally signing SMB packets the client and server can confirm where they originated from as well as their authenticity.
SMB packet signing is available in all supported versions of Windows. Microsoft also note that depending on factors such as the SMB version, file sizes, and specific hardware in use, SMB packet signing can degrade the performance of SMB, which is to be expected as we’re signing every packet that goes across the network, which adds overhead.
Secure DNS Traffic Using DNSSEC and DNS Policies
Posted by Jarrod
on July 14, 2017
No comments
In Windows Server 2016 we can secure DNS traffic using DNSSEC and DNS policies. DNSSEC allows a client to validate DNS responses, as by default DNS was not designed to be a secure protocol. DNSSEC allows a client to confirm that the information which has been returned from a DNS server has actually come from the correct and trusted DNS server without modification.
DNSSEC, which stands for Domain Name System Security Extensions, was added to help secure the existing DNS protocol. This guide will walk you through configuring DNSSEC in a Windows Server 2016 environment.
Implement Auditing using Windows PowerShell
Posted by Jarrod
on July 12, 2017
No comments
We can implement auditing using Windows PowerShell with the Get-Acl and Set-Acl cmdlets. These allow us to view and modify the auditing options of a file or folder in Windows. While this can also be done through the graphical user interface, using PowerShell allows us to script such actions, as well as some extra functionality such as copying the auditing settings from one object to another.
Enable and configure Module, Script Block, and Transcription logging in Windows PowerShell
Posted by Jarrod
on July 10, 2017
2 comments
This post will show you how to enable and configure module, script block, and transcription logging in Windows PowerShell. Module logging allows you to specify the PowerShell modules that you want to log. Script block stores PowerShell commands that are run without the output, while transcription logging records the PowerShell commands that are run along with the full result of the command.
Configure the Audit Group Membership Policy
Posted by Jarrod
on July 7, 2017
1 comment
We can configure the audit group membership policy using group policy, allowing us to record the group of a user in a login event log entry. This is used in addition to the Audit Logon policy to expand the information provided and include the group membership information of the user accessing the system.
Configure the Audit PNP Activity Policy
Posted by Jarrod
on July 5, 2017
2 comments
In this post we’ll show you how to configure the audit PNP activity policy in Windows Server 2016 via group policy.
PNP, or Plug and Play, is used so that the operating system automatically detects and configures an external device so that it’s ready to use. A common example is when you plugin a USB storage device and it “just works”. By auditing PNP activity, we can log events every time an external device is detected.
Determine the differences and usage scenarios for using local audit policies and advanced auditing policies
Posted by Jarrod
on June 30, 2017
1 comment
We can enable auditing of various items in Windows Server 2016 by configuring both local audit policies and advanced audit policies with group policy. We will determine the differences and usage scenarios for using local audit policies and advanced auditing policies in this post.
Implement Auditing Using Group Policy and AuditPol.exe
Posted by Jarrod
on June 28, 2017
1 comment
We can implement auditing using group policy and auditpol.exe in Windows Server 2016. This will allow us to log very specific events that take place within the operating system. We’ll demonstrate how to configure audit policies with both of these methods here.